All the security settings are configurable directly from the portal via checkboxes, without any coding involved. Finally, Quixxi Dashboard will allow you to remotely monitor what’s going on and take the appropriate action when required

They include, but are not limited to:

• Encrypted Strings – Quixxi can remove the hardcoded strings in the classes replacing them with native layer calls. Removed strings are encrypted and stored in the native layer in order to protect the associated data
• Method Call Hiding – Quixxi can hide the method calls too, filling their body declaration with native method calls. Code readability for the attackers is going to dramatically drop down, in order to protect the trivial understanding of the business logic
• Dynamically derived encryption keys – Quixxi doesn’t store the keys used to encrypt strings in the application and the key to decrypt encrypted strings will vary from application to application. Moreover different keys will handle different content
• Randomization – Quixxi will replace the original variables and methods labels with incomprehensible ones that will be different for each application, in order to make the sequence of calls unique and unforeseeable
• Spoofing techniques – Quixxi will fool the attacker and increase the cracking effort inserting spoof Android code in multiple ways
• Library Protection – Quixxi can apply its effects also on Android libraries, supporting both aar and jar files. After a simple drag’n’drop the library code will be moved into the native layer
• Debug log removal – Quixxi will remove the Android logs because they can provide hints for realizing a successful hack.
• Static resources encryption – Quixxi will be able to encrypt the images used in your Android app.

• Threats Detection – Quixxi will automatically terminate your app instance whenever a runtime threat is trying to break the security configuration of your choice, providing directly on the portal both the attacker and the offence details.
• App Integrity Check – Quixxi will double check if your app has been modified from its original version and close it when it is the case, preventing any risk for the final user.
• In-App purchase protection – Quixxi will secure your app and defend it against the circumvention of the in-app purchase logic. Start cashing the premium features you are selling!
• Debug log removal – Quixxi will remove the Android logs because they can provide hints for realizing a successful hack.
• Static resources encryption – Quixxi will be able to encrypt the images used in your Android app.

• Certificate Pinning – Quixxi can help implement properly the validation of the certificate expected to be received from the client app when contacting the server, preventing the session to start when the match doesn’t occur.
• Root/Jailbreak Detection – Quixxi can detect if an app is running on a rooted/jailbroken phone, where an unplanned excess of exposed data may happen due to a tweak of the official operative system. The final user will then end up being bounced out of the app for his own safety.
• Emulator Detection – Quixxi can detect if somebody is trying to analyze your app running it inside an emulator and close the app stopping this process
• Attached Debugger Detection – Quixxi can detect if a debugger has been attached to the app in order to examine its variables and evaluate its expressions at runtime. In this scenario the app will be immediately terminated
• Malware Detection – Quixxi can quickly detect upon app launch, if the phone in which the app is running has malware installed and make it inaccessible, avoiding consequences that can damage your business and/or your final customer
• Runtime resources encryption – Quixxi can encrypt the files produced at runtime in your iOS app plus the Shared Preferences/User Defaults that otherwise can be easily accessed in rooted/jailbroken devices