How to integrate ByteHide Shield with .NET projects?

Install the ByteHide.Shield.Integration NuGet package, configure your project token, and build your project. Protection applies automatically during MSBuild compilation.

Which .NET frameworks are supported by Shield?

Shield supports .NET Framework 4.0+, .NET Core 2.0+, .NET 5-8+, .NET Standard, Xamarin, MAUI, Unity, Blazor, ASP.NET, WPF, and WinRT.

How to configure Shield protection settings?

Configure Shield through MSBuild properties, environment variables, or the bytehide.json configuration file. Set protection levels, exclusions, and runtime options.

How to troubleshoot Shield integration issues?

Enable verbose logging, check build output for error messages, verify project token configuration, and ensure compatible .NET version and MSBuild tools.

How to exclude specific assemblies from protection?

Use the ExcludeAssemblies MSBuild property or add exclusion rules in bytehide.json configuration file to skip protection for specific assemblies or namespaces.

How to verify Shield protection was applied?

Check MSBuild output for Shield processing messages, examine protected assembly metadata, or use reflection tools to verify obfuscation was applied.

How to configure Shield for Unity projects?

Install Shield Unity package, configure project token in Unity settings, enable IL2CPP backend, and ensure compatible Unity version (2019.4+).

How to set up Shield in CI/CD pipelines?

Set project token as environment variable, ensure NuGet package restore, configure MSBuild parameters, and handle licensing for build agents.

Instruction Substitution

Protection ID: instruction_substitution

Instruction Substitution replaces standard CPU instructions with functionally equivalent sequences that produce the same result. This defeats pattern-based analysis tools that identify common operations by their instruction signatures.

Configuration

JSON

{
  "protections": {
    "instruction_substitution": "medium"
  }
}

{
  "protections": {
    "instruction_substitution": "medium"
  }
}

Available levels: "simple", "medium", "complex".

How It Works

Reverse engineering tools and automated analyzers rely on recognizing standard instruction patterns to understand what code does. For example, a simple addition might always compile to the same instruction sequence, making it easy to spot across the binary.

Instruction Substitution breaks this pattern recognition by replacing standard instructions with alternative sequences that compute the same result in a different way. The behavior is identical, but the binary representation no longer matches the patterns that analysis tools expect.

Higher complexity levels produce more elaborate substitutions that are harder to reverse, with a corresponding small increase in code size.

Intensity Levels

Level	Description
`simple`	Basic substitutions with minimal overhead
`medium`	More varied substitutions that defeat common pattern matchers
`complex`	Highly diverse substitutions for maximum resistance to automated analysis

When to Use

Instruction Substitution is effective against automated binary analysis tools and signature-based detection. It works best when combined with Arithmetic Obfuscation and Register Shuffling for comprehensive instruction-level protection.

Arithmetic Obfuscation - Transform arithmetic expressions
Register Shuffling - Randomize register usage
Protections Overview - All available protections

Configuration

How It Works

Intensity Levels

When to Use

Related