Mobile Application Penetration Testing

The Mobile application penetration testing is the process of testing a mobile applications whether that is iOS or Android to detect and identify security bugs and vulnerabilities that leads to compromise or harm the system.

To lead a security test against the mobile app, we look to comply the following methodology:

  • Information gathering: performing the discovery phase;
  • Scanning automatic and manual: using the Appropriate tools and techniques;
  • Analysis and Assessment: filtration of findings; More tests and techniques will be activated to perform this phase such us:
    • Architecture analysis;
    • Static and dynamic analysis;
    • Reverse engineering;
    • Analyze the comunications between the target app and other apps;
    • file system analysis;
  • Attempting to Exploitation and post-exploitation;
  • Reporting;