-
https://github.com/lawgimenez/h4cker/tree/master/mobile_security
-
The tests described in the new MASTG v1.6 does not have an unique identifier associated. In other words, the only way to refer a MASTG test is through the title. Will you provide unique identifiers fo…
-
### Finding Description
The application was found to be using a target SDK less than 29. Beginning August 2021, targeting an SDK level of 29 or higher will be a requirement for publishing to the Goog…
-
When I analyzed the project with mobsf, it said that it found a high priority error. When I followed the error, I discovered that an old method was used in the library, can you help me to fix the erro…
-
Nearby Connections is a peer-to-peer networking API that allows apps to easily discover, connect to, and exchange data with nearby devices in real-time, regardless of network connectivity.
> We don’t…
-
QUESTION: Is there a reason why the MASVS has 2 glossaries (even differently formatted) :thinking_face: ?
https://github.com/OWASP/owasp-masvs/blob/master/Document/0x90-Appendix-A_Glossary.md
https:…
-
The OWASP CycloneDX community has been working hard over the last three months to provide a way for the standard to represent:
- standards
- requirements
- attestations
- claims
- evidence
- .…
-
The current description of a local build only covers macOS:
https://github.com/OWASP/owasp-masvs/issues/531
https://github.com/OWASP/owasp-masvs#create-new-pdf-epub-mobi-and-word-document
The …
-
Hallo @duddu!
In last `pentest` feedback we got finding with title `"not enough integrity"` again :). Because plugin check only `ASSETS`-folder. Is it possible to do this check for all files? Or I …
-
**Platform:**
iOS, Android
**Description:**
The current MSTG test cases for the screenshot on mobile devices state and restrains the screenshots for application when it is in the background. How…