How to integrate ByteHide Shield with .NET projects?

Install the ByteHide.Shield.Integration NuGet package, configure your project token, and build your project. Protection applies automatically during MSBuild compilation.

Which .NET frameworks are supported by Shield?

Shield supports .NET Framework 4.0+, .NET Core 2.0+, .NET 5-8+, .NET Standard, Xamarin, MAUI, Unity, Blazor, ASP.NET, WPF, and WinRT.

How to configure Shield protection settings?

Configure Shield through MSBuild properties, environment variables, or the bytehide.json configuration file. Set protection levels, exclusions, and runtime options.

How to troubleshoot Shield integration issues?

Enable verbose logging, check build output for error messages, verify project token configuration, and ensure compatible .NET version and MSBuild tools.

How to exclude specific assemblies from protection?

Use the ExcludeAssemblies MSBuild property or add exclusion rules in bytehide.json configuration file to skip protection for specific assemblies or namespaces.

How to verify Shield protection was applied?

Check MSBuild output for Shield processing messages, examine protected assembly metadata, or use reflection tools to verify obfuscation was applied.

How to configure Shield for Unity projects?

Install Shield Unity package, configure project token in Unity settings, enable IL2CPP backend, and ensure compatible Unity version (2019.4+).

How to set up Shield in CI/CD pipelines?

Set project token as environment variable, ensure NuGet package restore, configure MSBuild parameters, and handle licensing for build agents.

Reference Proxy

Protection ID: referenceProxy

Reference Proxy replaces direct method calls with indirect calls routed through generated proxy classes. This breaks the cross-reference analysis that decompilers and reverse engineering tools rely on to understand code relationships.

Configuration

Groovy

shield {
    protections {
        referenceProxy = true
    }
}

shield {
    protections {
        referenceProxy = true
    }
}

How It Works

Reference proxy protection hides the relationships between classes in your application. When a method calls another method directly, decompilers can trace the call chain to understand the application's architecture, identify critical components like payment processing or authentication, and map the full dependency graph.

Reference Proxy breaks this by inserting proxy intermediaries. Each method call is routed through a generated proxy class, so decompilers cannot determine the actual target without analyzing the proxy itself, which may also be obfuscated and encrypted.

Before Shield

Java

public void processPayment(Order order) {
    double amount = order.calculateTotal();
    PaymentResult result = gateway.charge(amount);
    notificationService.sendConfirmation(result);
}

public void processPayment(Order order) {
    double amount = order.calculateTotal();
    PaymentResult result = gateway.charge(amount);
    notificationService.sendConfirmation(result);
}

After Shield (Conceptual)

Java

public void processPayment(Order order) {
    double amount = Proxy_a.invoke(order);          // order.calculateTotal()
    PaymentResult result = Proxy_b.invoke(amount);  // gateway.charge(amount)
    Proxy_c.invoke(result);                          // notificationService.sendConfirmation(result)
}

public void processPayment(Order order) {
    double amount = Proxy_a.invoke(order);          // order.calculateTotal()
    PaymentResult result = Proxy_b.invoke(amount);  // gateway.charge(amount)
    Proxy_c.invoke(result);                          // notificationService.sendConfirmation(result)
}

Decompilers cannot determine what Proxy_a.invoke() actually calls without analyzing the proxy class, which itself may be obfuscated and encrypted.

What It Protects Against

Reference proxy is particularly effective against cross-reference analysis (tools like JADX show "used by" and "calls to" references, and proxy indirection breaks these links), call graph reconstruction (automated tools that build call graphs to understand application flow cannot follow proxy calls), and pattern matching (security scanners that look for specific API call patterns such as payment processing or cryptography are defeated by the indirection layer).

Combining with Other Protections

Reference Proxy is most effective when combined with name obfuscation and control flow obfuscation:

Groovy

protections {
    nameObfuscation = true
    controlFlowObfuscation = true
    referenceProxy = true
}

protections {
    nameObfuscation = true
    controlFlowObfuscation = true
    referenceProxy = true
}

With all three enabled, decompiled code shows renamed classes with obfuscated control flow calling through anonymous proxy methods, making reverse engineering extremely difficult.

When to Use

Reference proxy is recommended for applications where hiding the architecture and class relationships is important. It is especially effective for proprietary algorithms, payment and authentication flows, DRM and license management, and any security-sensitive code paths.

Name Obfuscation - Rename identifiers
Control Flow Obfuscation - Restructure method logic
Protections Overview - All available protections