我希望通过反向工程/反编译apk / ipa到源代码来保护 PhoneGap / Cordova离子混合移动应用。
模糊处理有哪些可用的工具?请建议
答案 0 :(得分:1)
if you want secure your ionic app from reverse engineering and fully
secured source code i recommended two steps.
First use Enable ProGuard into cordova/ionic project
1. To implement this, open /platforms/android/project.properties and
uncomment one line by removing the “#” at left:
#proguard.config=${sdk.dir}/tools/proguard/proguard-android.txt:proguard-
project.txt
2.copy proguard-custom.txt from
(https://github.com/greybax/cordova-plugin-proguard/blob/master/proguard-custom.txt) 到
$android/assets/www/proguard-custom.txt Remove '#'
#-keepclassmembers class android.webkit.WebView {
# public *;
# }
3. add snippet to build.gradle
Find buildTypes by ctrl + F and add like this
buildTypes {
debug {
minifyEnabled true
useProguard false
proguardFiles getDefaultProguardFile('proguard-android.txt'),
'proguard-rules.pro'
}
release {
minifyEnabled true
proguardFiles getDefaultProguardFile('proguard-android.txt'),
'proguard-rules.pro'
}
}
Second use cordova-plugin-crypt-file
obfuscate or encrypt your code like build/main.js
1)Install cordova plugin add cordova-plugin-crypt-file
2)plugins/cordova-plugin-crypt-file/plugin.xml
//Using Refrence of cordova-plugin-crypt
<cryptfiles>
<include>
<file regex="\.(htm|html|js|css)$" />
</include>
<exclude>
<file regex="exclude_file\.js$" />
</exclude>
</cryptfiles>
Final step ionic cordova build android --release
Now extreact your apk or try APK decompiler
(http://www.javadecompilers.com/apk)
For remotely secur fetching and sending data use RxJS
答案 1 :(得分:0)
终于得到了我的疑问的答案:
Javascript Obfuscator将JavaScript源代码转换为混淆且完全不可读的形式,防止其被分析和被盗。它是一个100%安全的JavaScript minifier和最好的JavaScript压缩器。它支持所有混合移动应用程序。
Use This Link并下载 GUI 以保护JavaScript源代码成为混淆代码