-
[APKEnum](https://github.com/shivsahni/APKEnum) is mentioned a few times in the MASTG, though it's Python 2.7 and doesn't look actively maintained. Let's remove the references from the MASTG and leave…
-
> This prev. open PR could contain useful inputs: https://github.com/OWASP/owasp-mastg/pull/2604/files#diff-a6472df266173afc665035280a844525ce81374d2b343070dfd37a24deffa541
## Description
Create…
-
NoPE Proxy serves as a Burp Suite Extension designed for proxying Non-HTTP Traffic.
Link: https://github.com/summitt/Nope-Proxy
-
## Description
Create a new risk for "Sensitive Data Stored With Insufficient Access Restrictions in Internal Locations (MASVS-STORAGE-2)" using the following information:
Sensitive data may be …
-
Create a new weakness for "MASWE-0048":
- **GitHub Repo file:** https://github.com/OWASP/owasp-mastg/blob/master/weaknesses/MASVS-NETWORK/MASWE-0048.md
- **Website Page:** https://mas.owasp.org/MASW…
-
Create a new weakness for "MASWE-0050":
- **GitHub Repo file:** https://github.com/OWASP/owasp-mastg/blob/master/weaknesses/MASVS-NETWORK/MASWE-0050.md
- **Website Page:** https://mas.owasp.org/MASW…
-
## Description
Create a new risk for "Weak Encryption (MASVS-CRYPTO-1)" using the following information:
The use of outdated encryption methods like DES and 3DES may compromise data confidenti…
-
## Description
Create a new risk for "Deprecated Android KeyStore Implementations (MASVS-CRYPTO-2)" using the following information:
Avoid deprecated implementations such as BKS
Create "`risks/…
-
## Description
Create a new risk for "Weak Hashing (MASVS-CRYPTO-1)" using the following information:
Utilizing weak hashing algorithms such as MD5 and SHA1 in a security sensitive context may com…
-
https://mas.owasp.org/MASTG/0x09-Suggested-Reading/
Most books are quite outdated.