0x03 Mobile Application Threats

OWASP / owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

https://mas.owasp.org/

Creative Commons Attribution Share Alike 4.0 International

11.57k stars 2.29k forks source link

0x03 Mobile Application Threats #207

Closed muellerberndt closed 6 years ago

muellerberndt commented 7 years ago

Section lacks content. Add description of the OWASP Top 10, and how it maps to the MASVS / MSTG.

https://github.com/OWASP/owasp-mstg/blob/master/Document/0x03-Overview.md#mobile-application-threats

sushi2k commented 7 years ago

This section: https://github.com/OWASP/owasp-mstg/blob/master/Document/0x03-Overview.md#mobile-application-threats

muellerberndt commented 7 years ago

Probably better to replace the Mobile Top Ten with the MASVS vulnerability categories.

seamustuohy commented 7 years ago

NIST's Mobile Threat Catalogue has a solid enumeration of various threats on a variety of different levels of the mobile ecosystem. It might be a useful resource to at least link out to while you are developing a more robust section here.

muellerberndt commented 7 years ago

@seamustuohy that's an awesome resource, thanks.

sushi2k commented 7 years ago

Hi @defern. Do you still have time to create this content?