Mobile apps are everywhere and they are rapidly developing
Svitsec is using manual methods and automatic tests for security controls in mobile apps:
- App GUI
- Device Filesystem
- Device Memory
- Network communications
The testing is conducted on a live device or an emulator.
Svitsec can perform mobile application penetration tests of the Android and IOS platform.
Security vulnerabilities checked for in your mobile apps include:
- Insecure data storage
- Insufficient transport layer protection
- Client-side injection vulnerabilities
- Poor authentication and authorization
- Weak server-side controls
- Improper session handling
- Side channel data leakage
- Data flow issues
- Cryptography
- Sensitive information disclosure