Branchlock

The first web-based Android & Java Obfuscator

Welcome, we are a service that gives you the opportunity to protect your Java applications from reverse engineering and bytecode tampering.

Here at Branchlock, we want to give small developers a chance for code protection that is not overly expensive. Our goal was to develop a powerful, yet modern and lightweight obfuscator for Java-based Desktop & Android applications.

Try now » Showcase »

Obfuscate anywhere

You can encrypt your java files on any device without always carrying the obfuscator as a file. It does not require unnecessary hardware ID checks.

Performance

Have you ever encrypted a 20 megabyte file with proguard? This can often take several minutes. Since this obfuscator is completely online, you don't need good hardware to get your encrypted program in under half a minute.

Easy-to-use

Using the simple obfuscator interface Branchlock provides, you can encrypt a program without worrying about writing config files or reading documentations. Even Android obfuscation stays as simple as possible.

Updates

Updates automatically land on the server. You never need to download anything. Branchlock also provides frequent updates to ensure top security and fix your bugs.

Branchlock Features

Branchlock provides a number of features that prevent reverse engineering and bytecode editing.

Control Flow Obfuscation

Changes the logical code structure to a less understandable one for humans and decompilers, even crashing some.

Before

    public static KeyStroke getAccelerator(String string) {
        String string2 = Util.isMacOS() ? "meta " : "control ";
        return KeyStroke.getKeyStroke(string2 + string);
    }

After

    public static KeyStroke getAccelerator(String var0) {
        v0 = Util.isMacOS() ? 1 : 0;
        if (v0 == 0) {
            v0 % v0;
            v0 = 0;
        }
        var1_1 = "meta ";
        ** goto lbl11
    lbl9:
        // 1 sources

        while (true) {
            var1_1 = "control ";
    lbl11:
            // 2 sources

            return KeyStroke.getKeyStroke(var1_1 + var0);
        }
        catch (RuntimeException v1) {
            ** continue;
        }
    }

Reference Encryption

Replaces method invocations and field references with a dynamic caller, which makes decompiling extremely hard.

Before

   public static boolean isMacOS() {
      if (isMacOS == '?') {
         try {
            String var0 = System.getProperty("mrj.version");
            if (var0 != null) {
               isMacOS = 'Y';
            } else {
               isMacOS = 'N';
            }
         } catch (Exception var1) {
            isMacOS = 'N';
         }
      }

      return isMacOS == 'Y';
   }

After

    public static boolean isMacOS() {
        if (invokedynamic(-kzdm24:()C) == '?') {
            try {
                if (invokedynamic(-kzdlw4:(Ljava/lang/String;)Ljava/lang/String;, "mrj.version") != null) {
                }
                // invokedynamic(-kzdlw9:(C)V, 89)
                else {
                }
                // invokedynamic(-kzdlvn:(C)V, 78)
            }
            catch (Exception ex) {
            }
            // invokedynamic(-kzdlvu:(C)V, 78)
        }
        return invokedynamic(-kzdlvz:()C) == 'Y';
    }

String Encryption

Encrypts all strings & replaces them with an array reference or dynamic caller.

Before

    public static String getPref(String string, String string2) {
        try {
            Preferences preferences = Preferences.userRoot();
            Preferences preferences2 = preferences.node("/edu/hws/edu/umb");
            return preferences2.get(string, string2);
        }
        catch (Exception exception) {
            return string2;
        }
    }

After

    public static String getPref(String var0, String var1) {
      try {
         Preferences var2 = Preferences.userRoot();
         Preferences var3 = var2.node(Í†Ì?());
         return var3.get(var0, var1);
      } catch (Exception var4) {
         return var1;
      }
   }

Number Obfuscation

Converts ints and longs to complex terms.

Before

    public static boolean isMacOS() {
        if (isMacOS != '?') return isMacOS == 'Y';
        try {
            String string = System.getProperty("mrj.version");
            isMacOS = string != null ? (char)89 : (char)78;
        }
        catch (Exception exception) {
            isMacOS = (char)78;
        }
        return isMacOS == 'Y';
    }

After

    public static boolean isMacOS() {
        if (isMacOS != (Integer.parseInt("npbl7p", 34) << 7008 ^ (0x39172A6E ^ 0x79594D72))) return isMacOS == (1876736255 >>> 1184) - (-1687724146 - 730506984);
        try {
            String string = System.getProperty("mrj.version");
            isMacOS = string != null ? (char)(0x67DA10FA ^ 0x82314F26 ^ -483424197 - -45864778) : (char)((0x277D1F76 ^ 0x277D1F51) << (4353 << 6528));
        }
        catch (Exception exception) {
            isMacOS = (char)((0x4CC88836 ^ 0xC18AF087) + (1925023645 >>> Integer.parseInt("6ce", 29)));
        }
        return isMacOS == (1876736255 >>> 1184) - (-1687724146 - 730506984);
    }

Scramble code logic

Performs small tweaks to the code that makes it harder to understand for humans.

Before

    var10 = var19[var20 - 1] + var17 + 1 - var19[var20];
    var11 = var10 / 2;
    int var12 = (var10 + 1) / 2;
    int var13 = var19[var20 - 1] - 12 + var17 / 2 - (var20 - 1) * (var17 + 1);
    int var14 = 12 + var2 + var17 - var17 / 2 - var19[var20] - (var5 - var20) * (var17 + 1) + 1;

    int var15;
    int var16;
    for(var15 = var20 - 1; var11 > 0; --var15) {
        var16 = var19[var15] - (var19[var15 - 1] + var17 + 1);
        var19[var15] -= var11;
        if (var16 > 0) {
            var11 -= var16;
        }
    }

After

    var10 = var19[var20 - 1] + var17 + 1 - var19[var20];
    var11 = var10 >> -63;
    int var12 = var10 + 1 >> 289;
    int var13 = var19[var20 - 1] - 12 + (var17 >> -639) - (var20 - 1) * (var17 + 1);
    int var14 = 12 + var2 + var17 - (var17 >> 33) - var19[var20] - (var5 - var20) * (var17 + 1) + 1;

    int var15;
    int var16;
    for(var15 = var20 - 1; var11 > 0; var15 -= 43) {
        var16 = var19[var15] - (var19[var15 - 1] + var17 + 1);
        var19[var15] -= var11;
        if (var16 > 0) {
            var11 -= var16;
        }

        var15 += 42;
    }

Runtime coverage

Hides runtime instantiations by using cover classes that extend the original classes.

Before

    private void initializeMenu() {
      JMenuBar bar = new JMenuBar();
      JMenu file = new JMenu("File");
      JMenuItem ws = new JMenuItem("Quit");
      ws.addActionListener(l -> {
         this.dispose();
      });
      file.add(ws);
    }

After

    private void initializeMenu() {
        Terminal.5 bar = new Terminal.5();
        mxImageBundle.3 file = new mxImageBundle.3("File");
        DarkInternalFrameUI.5 ws = new DarkInternalFrameUI.5("Quit");
        ws.Mg(l -> {
            this.dispose();
        });
        file.zo((JMenuItem)ws);
    }

Generalize access

Removes all access modifiers that could help a possible reverse engineer. Makes it harder to identify which fields are changed and which remain unchanged.

Anti-debug

Disables certain debugging methods that could be useful for potential attackers.

Crash RE-tools PREMIUM

Uses different methods & exploits to crash nearly all GUI reverse engineering tools.

Stacktrace encryption PREMIUM

Encrypts line numbers and source file information in stacktraces, so no information is given away to end-users.

Maven integration PREMIUM

Our system automatically parses and downloads the libraries from the repositories via maven.

Anti-root

Detects if the end-user has a rooted android device, and if so, suspends the application.

Follow @BranchlockNet