👋Introduction

freeRASP is a lightweight and easy-to-integrate mobile security library designed to protect apps from potential threats during the application's runtime. It contains multiple security checks, each aimed to cover possible attack vectors to ensure a high level of application security.

What does freeRASP do?

freeRASP provides protection against potentially dangerous behaviour, including the following:

Using rooted or jailbroken devices (e.g., su, Magisk, unc0ver, check1rain, Dopamine).
Reverse engineering attempts.
Running hooking frameworks (e.g., Frida, Xposed or Shadow).
Tampering or repackaging the application.
Installing the app through untrusted methods/unofficial stores.
Running the app in various emulators.
Screenshot and screen recording attempts.

You can read more about the concept of RASP (Runtime application self-protection) here.

Advantages

Reactions to various attacks and detected security threats via an API (callback mechanism).
Simple integration.
VPN and Developer Mode (Android) detection.
ADB, Developer Mode, USB debugging detections.
No significant effect on the app performance.
Weekly security report via email indicating the security status of devices and app integrity.
Fulfills OWASP MASVS-RESILIENCE requirements.

Top apps rely on Talsec SDKs—see them here.

Limitations

Limits of Fair Usage Policy (free up to 100k app downloads; additional conditions after).
Data collection from your app to Talsec DB.
Security protections:
- basic protection against root/jailbreak (including Magisk, Dopamine),
- basic runtime reverse engineering controls,
- basic runtime integrity controls.
No overlay and accessibility services misuse protection.