DEV Community: Tomáš Soukal

Fraud-Proofing an Android App: Choosing the Best Device ID for Promo Abuse Prevention

Tomáš Soukal — Fri, 05 Jan 2024 14:59:27 +0000

Promo abuse is a type of fraud on Android where bad actors take advantage of a business’s sign-up bonuses, referrals, coupons, or promotions by creating new accounts over and over again. What is the best way to identify and blocklist abuser's device? Talsec's analysis indicates that MediaDRM could be the most effective solution.

Learn more:
https://medium.com/@talsec/fraud-proofing-an-android-app-choosing-the-best-device-id-for-promo-abuse-prevention-aa4a2459637f?source=friends_link&sk=adabe510416712dfa8d9522e7172c411

React Native Secure Storage Solutions [article]

Tomáš Soukal — Wed, 30 Aug 2023 14:49:56 +0000

Let's sort this out: which secure storage solutions are available for your data in React Native? Article:

https://lnkd.in/eB8r8YpA

Would you use a software-based secure storage SDK for React Native that utilizes a hardcoded obscured encryption key?

Emulator detection of Bluestacks and Nox Player comes to freeRASP v4!

Tomáš Soukal — Fri, 03 Feb 2023 14:35:10 +0000

https://github.com/talsec/Free-RASP-Flutter/releases/tag/v4.0.0

The Flutter community asked to include detection of Bluestacks and Nox Player emulators that are popular among gamers. The detection is very precise and quick. It takes into account HW and SW identifiers and can detect these emulators even with spoofed device profiles. This feature is now included in freeRASP v4. https://github.com/talsec/Free-RASP-Flutter/releases/tag/v4.0.0

Some quick ideas:

You can use it to analyze how many users run your app on these emulators.
Limit hacking attempts. Use the emulator detection together with the tampering detection.
Limit cheaters. Correlate emulator instances with suspicious behavior.

Please don't limit users unnecessarily!

Collecting info for the development of a community mobile app shielding SDK (freeRASP React Native flavor)

Tomáš Soukal — Mon, 19 Dec 2022 13:39:33 +0000

Based on experience with freeRASP for Android/iOS/Flutter/Cordova, there should be a demand for a shielding SDK for RN-based apps, right? I worked on the development of previous freeRASP flavors, and I would like to support React Native apps also. However, this will be quite a new experience as I am not well-versed in the RN ecosystem yet. That's why I would highly appreciate any tips regarding package management, nuances of hybrid development in the RN world, etc. I target iOS and Android platforms.

Is there anything specific you would like to see in the implementation?

Anything to watch out for?

Goals

Easy to use SDK that satisfies needs of app security and mobile OWASP MAS compliance

Available on GitHub and also as a npm package

Configurable (~ same as Flutter version) - configuration as a single object

Lightweight

It will be able to detect reverse engineering, debugger, simulator, repackaging or cloning attempts, running the app in an unsafe OS environment (e.g., root or jailbreak), hooking frameworks, and installing the application through unofficial stores.

How to Hack & Protect Flutter Apps (Pt. 2/3)

Tomáš Soukal — Fri, 09 Dec 2022 13:28:36 +0000

I am working on a short guide, "How to Hack & Protect Flutter Apps" aimed at junior and medior Flutter devs and reverse engineers who'd like to get acquainted with App protection for Flutter-based apps. I am happy to announce the part 2 is released!
-> https://lnkd.in/emzZXzQd

The part 1 was a huge success with a great feedback on r/FlutterDev: https://lnkd.in/e4guhduw

Part 1 ↓
https://lnkd.in/eXA9WKzj

Disassemble app.
Extract its secrets.

Part 2 ↓
https://lnkd.in/emzZXzQd

Make a fake clone.
Check every transmitted JSON.
Inject code.

Part 3 (coming soon) ↓

Steal authentication tokens. and attack the API.

freeRASP for Cordova

Tomáš Soukal — Wed, 30 Nov 2022 12:39:42 +0000

Highly recognized freeRASP SDK providing app protection and threat monitoring for mobile devices arrived in the Cordova ecosystem! This article will help you understand runtime application self-protection, explore freeRASP capabilities, and shield your app against threats!

https://medium.com/@talsec/freerasp-meets-cordova-48e8df038971?source=friends_link&sk=142ac5b103f4ed77b764a89bb20e58c3

How to Hack & Protect Flutter Apps — Simple and Actionable Guide (Pt. 1)

Tomáš Soukal — Tue, 29 Nov 2022 09:35:55 +0000

I am working on a short guide, "How to Hack & Protect Flutter Apps," aimed at junior and senior devs and reverse engineers who'd like to get acquainted with App protection for Flutter-based apps.
Part 1 (this article) ↓

Disassemble app.
Extract its secrets.

How to Hack & Protect Flutter Apps — Simple and Actionable Guide (Pt. 1/3)

The second and third guide will cover these areas. I may adjust them based on the feedback:

Part 2 (coming soon) ↓

Make a fake clone.
Check every transmitted JSON.
Inject code.

Part 3 (coming soon) ↓

Steal authentication tokens.
and attack the API.

Mobile API Anti-abuse Protection: AppiCrypt® Is a New SafetyNet and DeviceCheck Attestation Alternative

Tomáš Soukal — Wed, 01 Jun 2022 15:08:33 +0000

I compared the AppiCrypt and SafetyNet Attestation for Mobile API Protection based on App and Device authenticity and integrity. 🔌📲

Read on Medium:
Mobile API Anti-abuse Protection: AppiCrypt® Is a New SafetyNet and DeviceCheck Attestation Alternative

5 Things John Learned Fighting Hackers of His App — A must-read for PM’s and CISO’s

Tomáš Soukal — Thu, 09 Dec 2021 10:07:35 +0000

Writing this article gave me a lot of insights into mobile security issues. The interviewee made the point: You'll never understand until it happens to you. Have you ever experienced a cloning attack yourself?

Android security tips, RASPs, real-world consequences:

https://medium.com/@talsec/5-things-john-learned-fighting-hackers-of-his-app-a-must-read-for-pms-and-ciso-s-463379b49410

freeRASP Update: Flutter is supported!

Tomáš Soukal — Wed, 06 Oct 2021 11:49:38 +0000

Three words you wanted to hear: Flutter is supported!

Are you a Flutter dev? Jaroslav wrote a story about freeRASP's origin for you!

https://medium.com/@talsec/missing-hero-of-flutter-world-699bba780fd3

freeRASP provides multiplatform (Android, iOS, Flutter) mobile all-in-one protection for mobile applications free of charge.

The protection features:

✔️ Tamper protection

✔️ Repackaging/Cloning protection

✔️ Runtime analysis protection

✔️ Threat alerts & monthly security reports

freeRASP 1.0 is out! Want to be the first one to try out new free App Shielding library?

Tomáš Soukal — Thu, 19 Aug 2021 14:01:23 +0000