Mobile Apps

Mobile apps are everywhere and they are rapidly developing

Svitsec is using manual methods and automatic tests for security controls in mobile apps:

  • App GUI
  • Device Filesystem
  • Device Memory
  • Network communications

The testing is conducted on a live device or on emulator software.
Svitsec can perform mobile application penetration tests of the Android and IOS platform.

Security vulnerabilities checked for in your mobile apps include:

  • Insecure data storage
  • Insufficient transport layer protection
  • Client-side injection vulnerabilities
  • Poor authentication and authorization
  • Weak server-side controls
  • Improper session handling
  • Side channel data leakage
  • Data flow issues
  • Cryptography
  • Sensitive information disclosure