Question about debugger security

Can an attacker attach a debugger to my app after installing it to the market, or does the app have to be marked as debuggable first? How secure is this? Are there ways to开发者_StackOverflow社区 get around it?

Marked debuggable or not, if a hacker has your code on his/her machine he/she will be able to use a variety of tools to attach to your process, examine the code, the memory, execute arbitrarily etc. This goes for any app and any platform. Your best hope is to follow security best practices and obfuscate to make it hard for someone to crack your code.

even obfuscation doesn't work, unless you worry about protecting from your kid sister or grandmother! i can put a break point at the point right after the code is un-obfuscated!