Quarkslab released this week a new version of Epona, our Application Shielding software.
In the last year, our development team added new features, released two new components and continuously improved the security/performance ratio.
- Epona App Shield, which couples code & data obfuscation with self-defending mechanisms (RASP);
- Epona Keys Shield, a white-box cryptography library;
- Epona Digital Vault, a cryptographic library enabling developers to leverage hardware crypto features when available.
For a better reflection of the available functions, Epona is now split into three components:
Based on the industry-standard compiler LLVM, Epona App Shield evolved over the years from offering obfuscation passes to integrating integrity and environments checks into applications to protect them against reverse engineering and tampering attempts.
Thanks to our team hard work, Epona App Shield offers today more than 30 obfuscation passes, making it one the most advanced obfuscation software on the market.
To reflect the recent advancements in software protection, our team also developed Epona Keys Shield, a white-box cryptography library resistant to BGE and DCA attacks, and Epona Digital Vault, a secure storage library, which leverages hardware capabilities when available.
Epona App Shield:
This component has seen a lot of improvements since our last release note, here are the most important ones:
- Epona App Shield is now based on Clang/LLVM 10
- Implemented new obfuscation passes, now totalling more than 30+ obfuscation passes
- Added checks to detect Frida on Linux (including Android)
- Added checks to detect memory regions with rwx permissions on Linux (including Android)
- Implemented new anti-debug checks for Windows
- Support for Apple Catalyst (beta) binaries
Epona Keys Shield
We released last year a white-box cryptography library for Linux, Android, iOS & OSX, allowing developers to use the most common cryptographic algorithms: AES in different modes, hash functions such as SHA-256 as well as asymmetric cryptography with ElGamal.
Epona Digital Vault
We released a secure storage library for Android & Linux: it uses the Keystore facility provided by Android to store application-specific keys to encrypt and sign data stored in a secure storage database.
This library is well suited to encrypt sensitive data used in an application such as application-specific tokens, UUIDS, API tokens,…
To learn more about Epona and its components, go to the product page at the following link: quarkslab.com/epona
If you wish to see how Epona could help you protect your application or connected object, schedule a meeting with our sales team at the following link: https://quarkslab.com/schedule-a-demo/