-
Hi there!
Great project. It would be great to also map all the Mobile vulnerabilities from [OWASP's MASVS](https://mas.owasp.org/MASVS/).
How were the ASVS json's generated? Maybe I could try to…
-
Great work!
Hope to support masvs v2: https://github.com/OWASP/owasp-masvs/releases/tag/v2.0.0
-
**Describe the bug**
The new Release Breaking our OWASP MASTG/MASVS document generation.
**Steps To Reproduce**
```
Digest: sha256:3a0436dfa85c5b12580afc921ebd65097dce3cacf2befdcccac5898e4…
-
## Description
Create a new risk for "Deprecated Android KeyStore Implementations (MASVS-CRYPTO-2)" using the following information:
Avoid deprecated implementations such as BKS
Create "`risks/…
-
> This prev. open PR could contain useful inputs: https://github.com/OWASP/owasp-mastg/pull/2604/files#diff-a6472df266173afc665035280a844525ce81374d2b343070dfd37a24deffa541
## Description
Create…
-
## Description
Create a new risk for "Sensitive Data Not Excluded From Backup (MASVS-STORAGE-2)" using the following information:
sensitive data can be excluded to prevent it from being backed u…
-
## Description
Create a new risk for "Weak Hashing (MASVS-CRYPTO-1)" using the following information:
Utilizing weak hashing algorithms such as MD5 and SHA1 in a security sensitive context may com…
-
We analyzed the android apk with Mobsf security tool and find the below.
1.
CWE: CWE-327: Use of a Broken or Risky Cryptographic Algorithm
OWASP Top 10: M5: Insufficient Cryptography
OWASP MASVS…
-
## Description
Create a new risk for "Sensitive Data Stored With Insufficient Access Restrictions in Internal Locations (MASVS-STORAGE-2)" using the following information:
Sensitive data may be …
-
https://github.com/lawgimenez/h4cker/tree/master/mobile_security