Runtime Application Self Protection (RASP)
Prevent your mobile applications from being attacked while running on end-user smartphones. Our Runtime Application Self Protection is a library that empowers mobile applications with a set of detection and response features and leverages their cyber resilience.
Prevent malware, fraud and confidential data theft
Comply with legal requirements and pass certifications
A lightweight module optimized for performance
For Android and iOS
Secure applications day-to-day
Once installed and running on end-users’ smartphones and tablets, mobile applications are exposed to attacks coming from other applications (malware, spyware), from the network (Man-in-the- middle…), and that exploit system vulnerabilities. Our Runtime Application Self Protection detects threats coming from all these vectors so your application can efficiently thwart them.
Secure
Compliant
Meet legal requirements and standards (NIS2, DORA, PCI MPoC, EMV mobile…
User Friendly
No data collection and minimal permissions requested
Detection and response right in your mobile applications
Real-time monitoring
Security checks silently performed in the background with a neglectable impact on battery consumption.
360° security coverage
Detection of threats exploiting all possible vectors on a mobile device: applications, networks and the system.
Security event flows
Get security telemetry from all devices running your mobile applications and adjust your strategy accordingly.

On-device threat responses
Leverage built-in threat responses and set up customized ones to block threats in real-time.
Easy to embed
Our RASP for mobile is conceived to be easily integrated within applications in a couple of hours.
Android and iOS
A tool adapted to your business needs with versions for both Android (SDK) and iOS (Framework).
Mobile RASP for sensitive applications
Today, all organizations rely on mobile applications to add flexibility and agility to their activities. In sensitive sectors, securing those applications is required by law and strongly advised to always ensure service continuity and prevent the theft of critical data.
Installed on millions of banks and insurances companies’ clients mobile devices
Used by millions to play money games, gamble, shop online…
360° mobile threat detection
Our RASP prevents users from conducting high-risk transactions on untrusted devices and applications. It detects:
Application threats such as malware, spyware, leakware, that steal credentials, confidential data and one-time-password through overlaying, keylogging...
Network eavesdropping such as Man-in-the-middle and rogue cell tower that silently collect sensitive data transiting off the device.
Attacks exploiting system vulnerabilities such as an outdated OS, active developer mode, a tampered system, running in an emulator... that are leveraged to gain advanced rights over an application.
Our Application Security Suite
Yagaan is a suite of complementary, modular application security tools designed to help every organization adopt a security strategy in line with its challenges. From code analysis to real-time protection, security is integrated at every stage in the life of your applications.
Application Security Testing
(AST)
#Web & Mobile
Identify and correct vulnerabilities in source code. Increase your developers’ skills with automated secure coding coaching.
Mobile Application Security Testing (MAST)
#Mobile
Analyze the security of your mobile applications and integrated libraries. Quickly pinpoint non-conformities for easy correction.
Application
Shielding
#Mobile
Secure your mobile application code against reverse engineering and piracy. Protect your intellectual property without impacting the user experience.
Runtime Application Self Protection
(RASP)
#Mobile
Protect your applications at runtime. Detect and neutralize attacks in real time, and dynamically adapt your security responses to high-risk contexts.
Comply with regulations and get certifications
Meet industry standards (NIS2…), legal requirements (DORA…) and obtain certifications (PCI MPoC, EMV mobile…)