-
While reviewing 0x06h I realized that "Testing for Sensitive Functionality Exposure Through IPC" is missing for iOS. Now I've seen that there was a [ticket](https://github.com/OWASP/owasp-mstg/issues/…
-
Please advise how to act further. Created pull request.
-
In https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04f-Testing-Network-Communication.md#making-sure-that-critical-operations-use-secure-communication-channels we need to elaborate on the da…
-
This issue is regarding Pull Requst : https://github.com/OWASP/owasp-mstg/pull/1062
Why are we pointing to specific website and not a particular product.
Its commercial and that should also be cle…
-
The checklist (XLS) needs updating right before going to 1.2.0 of the MASVS.
-
Hi @coky-t ! Given your hard work on the translation of the MASVS & MSTG, I'dd like to get in touch with you. Are you on OWASP Slack? and otherwise: can you mail me at jeroen.willemsen@owasp.org?
-
Hi all,
I have been playing around with some Android crackmes from the OWASP community and found that I was not able to hook the first class loaded that extended from the class `Activity`. Therefo…
-
**Platform:**
iOS
**Description:**
At the sentence _Verify that the kSecAccessControlUserPresence policy and kSecAttrAccessibleWhenPasscodeSetThisDeviceOnly protection classes are set when the SecA…
-
See https://github.com/OWASP/owasp-mstg/issues/1027 as well.
-
See [feedback on Gitbook](https://www.gitbook.com/book/b-mueller/the-owasp-mobile-security-testing-guide/discussions/7).
"Testing Data Storage on Android" lists a Gradle task which comments out all…