As mobile apps are more and more used by every field of activity, they become also more and more interesting for malicious attackers. Apps need therefore to have a strong security, just as websites. That’s why we do mobile apps penetration testing that takes into consideration their specificity.
Our pen-testers test the mobile application installed on the smartphone as well as the API used by the mobile app, and the server on which the app is hosted.
For the mobile application, we test:
• Data storage,
• Network communication (communication with the API),
• Platform interaction – local identification,
• Security configurations (signature, debug…),
• Source code (that is available with the mobile app).