-
### Finding Description
The application was signed using a key length less than or equal to 1024 bits, making it potentially vulnerable brute force attacks that can result in forged digital signature…
-
**Platform:**
iOS, Android
**Description:**
I think there should be a testcase for detection of screen mirroring, as users could inadvertently be displaying sensitive information to another screen,…
-
### Finding Description
The app dynamically registers some unprotected broadcast receivers.
Broadcast receivers are an inter-process communication ingest mechanism, allowing apps to receive data in …
-
@rockhoppersec Should ISTG align input validation taxonomies from flag ship testing guide projects?
- ISTG abbreviates the input validation category with INVAL e.g. [IOT-DES-INVAL](https://github.c…
-
Generate APK and analyze it using MOBSF
Environment
react-native-code-push version: 6.2.1
react-native version: 0.63.4
version: android 29
I also tried upgrading nimbusds to 9.8.1 which is la…
-
In [Scope for 5.0 and beyond · Issue #1127 · OWASP/ASVS](https://github.com/OWASP/ASVS/issues/1127), @jmanico says:
> I think the levels should be RISK-BASED and absolutely not TESTABILITY BASED
…
Sjord updated
5 months ago
-
Hi
I have this error when scanning an android app
File "/Users/javi/Library/Python/3.9/lib/python/site-packages/semgrep/core_runner.py", line 257, in _stream_subprocess
raise SemgrepError…
-
* MobileMessaging SDK version: 10.19.2
* Xcode version: 14.2
* Your application language: Swift 5
* Cocoapods version: 1.12.1
Hi Team,
We received a report about a security problem with the c…
-
Hey,
Do you plan to release newer version of OWASP MAS Checklist?
I am asking because I have a strange issue.
In the current version when I select an answer in the first point for MASVS-STORAGE-1…
-
In order to speed up reviewing & releasing, we need to :
- [ ] Fix the epub rendering (check document for links and images) and fix errors from `epubcheck OWASP_MSTG-SNAPSHOT-en.epub`
- [ ] Fix t…