-
### MASTG Chapter
Tools
### File Line Number
-
### Context
Add the re-flutter tool ,This framework helps with Flutter apps reverse engineering using the patched version of the Flutter library wh…
-
Add an example test implementation for `risks/MASVS-STORAGE/1-store-sensitive-data-securely/data-unencrypted-internal/android-data-in-sandbox/test.md` (once merged by PR #2566)
Location should be `…
-
Hi @Foo-Manroot , I tried to patch my APK file with `-f` option, but when I run the APK it crashes with the message` stoped.`. I tried to read the log while running the app and this is what is shown(I…
-
### MASTG Chapter
MASVS-RESILIENCE/MASTG-TEST-0050
### File Line Number
21
### Context
link to `Tampering and Reverse Engineering on Android` returns `404`
---
The link points to …
-
In https://mas.owasp.org/MASTG/tests/android/MASVS-CODE/MASTG-TEST-0025/
the links at the top are rendered as:
[Testing Deep Links](https://mas.owasp.org/MASTG/tests/android/MASVS-CODE/MASTG-TES…
-
Add ios-app-signer to the list of iOS tools.
This is an app for OS X that can resign apps and bundle them into ipa files that are ready to be installed on an iOS device.
link : https://github.com/…
-
**Describe the issue**
The test case for "Making Sure that the App Is Properly Signed (MSTG‑CODE‑1)" for iOS is only an overview without much information on what to do with the codesign output.
…
-
Hi,
I have 2 Kali VM's (latest Kali), one on a 2019 MacBook (Intel) and one on a 2021 MacBook (ARM/M1).
On the Intel I can use Brida in Burp without issues and `frida-compile` works.
When d…
-
## Description
Create a new risk for "Insecure Random Usage (MASVS-CRYPTO-1)" using the following information:
Using a non-cryptographically secure PRNG in a security context, such as authenticati…
-
## Description
Create a new risk for "Insertion of Sensitive Data into Logs (MASVS-STORAGE-2)" using the following information:
Android APIs e.g. Log, Logger or iOS APIs e.g. NSLog, NSAssert.
…