RockyGuard

RockyGuard v1.2.0 · Windows + Linux

License protection for C++ applications. Simple to integrate, hard to defeat.

RockyGuard is a small, audited C++17 library that handles node-locked and floating license verification with public-key signatures, multi-location time anchors, and binary integrity checks. Sign once, verify everywhere.

Download the demo bundle → Start 30-day trial Read the quick start

Self-contained demo — library + sample license + 30-line C++ program. No credit card, no email gate. Trial requires a vendor license issued after request.

What RockyGuard does

Signed license files

Every license is signed with your private Ed25519 or RSA key and verified by the public key embedded in your application. Counterfeiting a license requires the private key — there is no shared secret to leak.

Multi-layer anti-tampering

Time-anchor cross-checks across multiple persistent locations, optional online time verification via TLS, hardware fingerprint matching with configurable threshold, and binary integrity self-check on shared-library builds.

No SaaS dependency

Verification runs offline against a static public key. Optional floating server runs on your customer's LAN for concurrent-seat licensing. Nothing phones home to RockyGuard.

Integration in five lines

Embed the public key, load the signed license file, verify it. No daemon to install, no SDK to register, no online activation step. 

#include <rockyguard/rockyguard.h>

int main() {
    rockyguard::LicenseVerifier verifier(PUBLIC_KEY);
    auto result = verifier.load("license.json");
    if (!result) { std::cerr << result.message << "\n"; return 1; }
    if (!verifier.check_node_locked()) { return 1; }
    // licensed and running
}

Same five lines on Windows, Linux. Static or shared library. Full quick start →

Good fit for

  • Small ISVs and indie developers shipping C++ desktop or server applications
  • Teams replacing aging proprietary licensing suites without committing to a SaaS subscription
  • Products where customers expect to run offline (regulated industries, on-prem deployments, air-gapped environments)
  • Software where signed-and-audited license enforcement matters more than slick admin UI

Not for you if

  • × You ship iOS, Android, or browser apps (RockyGuard is C++17 desktop / server only)
  • × You need cloud-managed licensing as a service (we run offline; no SaaS dashboard)
  • × You target Linux distributions with glibc < 2.34 (RHEL 8, Ubuntu 20.04, etc.) — supported in v1.3, not v1.2.0
  • × You need macOS support today (planned for v1.3)

We list this on the landing page deliberately. Buying licensing infrastructure and discovering a platform gap two weeks in is the worst possible experience for both sides.

We publish our threat model

Most licensing products describe defenses without naming the attacks they actually defend against. RockyGuard publishes a 9-row table mapping every concrete attack — file tampering, keygen, binary patching, clock rollback, MITM on the floating server, server spoofing, eviction forgery, fingerprint forgery, memory dumping — to its specific defense and the residual risk that remains after that defense is applied. The "memory dumping is out of scope" row stays in.

Read the threat model →

Start integrating today

30-day full Premium trial. No credit card required. Basic from $599/year, Premium $1,899/year.

View pricing → Talk to us