Skip to main content

Posts

Showing posts with the label information gathering and synthesis

Most Important Android Application Penetration Testing Checklist

Android is the biggest organized base of any mobile platform and developing fast—every day. Besides, Android is rising as the most extended operating system in this viewpoint because of different reasons. However, as far as security, no data related to the new vulnerabilities that could prompt to a weak programming on this stage is being revealed, realizing that this stage has an outstanding attack surface. Information gathering Information Gathering is the most basic stride of an application security test. The security test should attempt to test however much of the code base as could reasonably be possible. Therefore mapping every conceivable way through the code to encourage exhaustive testing is principal. General Information. Rundown of general application information. Testing for Common Libraries and Fingerprinting. Rundown of application components and Component authorizations. Reverse Engineering the Application Code. Application Local Storage Flaws