Speak to a Security Expert

Secure your mobile applications
> Mobile penetration testing,
> Advanced Mobile app security assessments
> Multiple mobile platforms

Mobile App Security Testing

OWASP

WASC

CREST

PCI

SANS

Mobile Application Security Testing Approach

Application Mapping

The initial step in the Mobile application security assessment is the mapping of the application for each type of the Operating System architecture. This will provide a detailed understanding of the application and the data flow, within the application as well as to the server.

  • Application understanding
  • Dataflow mapping

Client Side Attacks

In this stage, the focus of the testing is to understand the weaknesses on the client side. This includes the analysis of temporary storage, sensitive information and client side encryption

  • Binary Analysis & Identification of insecure APIs
  • File system analysis for identification of sensitive files & weak encryption implementation
  • Memory & Process analysis

Network Attacks

In this stage, the communication channel between the client and the server undergoes the review and attack. Sensitive plain text traffic is retrieved by analyzing

  • Installation traffic
  • Run time traffic

Server side attacks

The final phase of a mobile application security assessment is to assess the security of the server. In this, the server-side application would be tested to find out how it responds to various malicious requests.

  • TCP attacks are performed to identify vulnerabilities such as Buffer Overflows
  • HTTP Attacks are performed to identify application vulnerabilities such as XSS, SQL injection and other OWASP listed vulnerabilities

Application Security Assessments

,
Web applications play a key role in today’s business and connect organizations with its customers, partners and suppliers. For most organizations, web applications connect to most critical information assets within in the organizations. This…

Mobile Application Security & Risk Analysis

,
Mobile applications are increasing in numbers every day. Today more mobile phones / tablets accesses web applications than PCs. Increase in mobile applications means, application vulnerabilities and thus security incidents. Many mobile applications…

Wireless Security Assessment Service

,
A wireless network offers a convenient way for your employees and partners to connect to the network. An insecure wireless network will enable an attacker to easily access your networks. The use of weak wireless protocols, configuration mistakes…