Explain danger of sms as a 2nd factor - Githubissues

OWASP / owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

https://mas.owasp.org/

Creative Commons Attribution Share Alike 4.0 International

11.76k stars 2.33k forks source link

Explain danger of sms as a 2nd factor #963

Closed commjoen closed 5 years ago

commjoen commented 6 years ago

In https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04f-Testing-Network-Communication.md#making-sure-that-critical-operations-use-secure-communication-channels we need to elaborate on the danger of sms forwarding . Same holds for the authentication chapter.

isher-ux commented 6 years ago

I'd like to help tackle this issue as my first contribution. This can be assigned to me.

commjoen commented 6 years ago

Please accept the invite link send to you, so we can assign it to you :).

isher-ux commented 5 years ago

I have made changes and it looks like you all can see them but I am not 100% sure. Please let me know if you have any issues. I apologize in advance.

commjoen commented 5 years ago

This can be closed now. Thank you @NamiShuri ! Feel free to pick up your next issue ;-). Let us know via Slack or Github what you want to do next :).