👋Introduction

freeRASP is a lightweight and easy-to-integrate mobile security library designed to protect apps from potential threats during the application's runtime. It contains multiple security checks, each aimed to cover possible attack vectors to ensure a high level of application security.

What does freeRASP do?

freeRASP provides protection against potentially dangerous behaviour, including the following:

  • Using rooted or jailbroken devices (e.g., su, Magisk, unc0ver, check1rain, Dopamine).

  • Reverse engineering attempts.

  • Running hooking frameworks (e.g., Frida, Xposed or Shadow).

  • Tampering or repackaging the application.

  • Installing the app through untrusted methods/unofficial stores.

  • Running the app in various emulators.

You can read more about the concept of RASP (Runtime application self-protection) here.

Advantages

  • Reactions to various attacks and detected security threats via an API (callback mechanism).

  • Simple integration.

  • VPN and Developer Mode (Android) detection.

  • No significant effect on the app performance.

  • Weekly security report via email indicating the security status of devices and app integrity.

  • Fulfills OWASP MASVS-RESILIENCE requirements.

Limitations

  • Limits of Fair Usage Policy (limited to 100K app downloads).

  • Data collection from your app to Talsec DB.

  • Security protections:

    • basic protection against root/jailbreak (including Magisk, Dopamine),

    • basic runtime reverse engineering controls,

    • basic runtime integrity controls.

  • No overlay and accessibility services misuse protection.

Learn more about the limitations of freeRASP here.

Supported platforms

freeRASP is currently supported for:

Discover freeRASP

Last updated

Was this helpful?