-
Remediation section is mostly redundant with the overview or static analysis section.
Remediation should be merged into overview or static analysis throughout the document.
-
https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05a-Platform-Overview.md
-
See here:
https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md
-
https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#testing-for-sensitive-data-in-memory
-
See here:
https://github.com/OWASP/owasp-mstg/blob/master/Document/0x06e-Testing-Cryptography.md#user-content-testing-random-number-generation
-
Hi,
the documentation mentions the following note.
"This is not some form of jailbreak/root bypass. By using objection, you are still limited by all of the restrictions imposed by the applicable…
-
This section lacks content and needs more detail.
https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04-Testing-Processes-and-Techniques.md#analysis-techniques
-
See here:
https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04-Testing-Processes-and-Techniques.md#user-content-security-testing-in-the-software-development-life-cycle
-
Basic tutorial on setting up Substrate & writing and deploying tweaks.
https://github.com/OWASP/owasp-mstg/blob/master/Document/0x06c-Reverse-Engineering-and-Tampering.md#user-content-hooking-with-…
-
Show how to set up Frida and demonstrate core functionality.
https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05c-Reverse-Engineering-and-Tampering.md#user-content-dynamic-instrumentation…