Mobile application security testing involves testing a mobile app in ways that a malicious user would try to attack it. Effective security testing begins with an understanding of the application's business purpose and the types of data it handles.
In our increasingly mobile world, it's key to protect customers and their data by hardening applications using insights gained from an ASEC mobile security assessment.
ASEC leverages industry best practices such as the OWASP Mobile Top 10 and OWASP Mobile Security Testing Guide (MSTG) when evaluating client-side mobile applications for vulnerabilities. We use our own in-house research, tools, and techniques as an extension of our assessment approach - providing you with advanced testing coverage across your mobile application.
Static code analysis
Dynamic runtime analysis
Certificate pinning bypasses
Root/Jailbreak detection bypass
Cryptography & Network analysis
Data storage and Privacy analysis
Authentication & Session evaluation