Updated: Dec 27, 2020
Finally managed to restore almost all of my post from the previous wordpress.
1 year ago, I mentioned that IL2CPP seems to be broken. 1 year on, there are tools out there that completely reverse engineer your application, even if it is IL2CPP which allow vulnerabilities like code injection.
While third-party tools are required to code injection, it seems fairly easy to reverse engineer and side load the code when the application is running.
Since searching through the files and functions are required for code injection, obfuscation seems to be the only way to deter, making the process more tedious for modifications.