Back to security assessment
Mobile Application Security Assessment
OSCP, OSWP, OSCE, ISO and other certificates
are held by Group-IB specialists
10+ years of experience
in performing security assessments
OSSTMM, PTES, OWASP
standards at the core of Group-IB’s methodology
Mobile applications require unfailing security to carry out financial transactions and store personal data and commercial secrets. Any compromise can bring as much damage to the company as penetration into its internal network.
To protect you and your customers from data leaks and thefts, we offer the Mobile Application Security Assessment for iOS and Android.
Nearly every security assessment project by Group-IB involves vulnerabilities from the OWASP Mobile Top 10, a list of the most frequent threats in mobile applications
Mobile Application Security Assessment determines how easily a threat actor could:
Gain access to sensitive information through vulnerabilities in mobile apps
Escalate unauthorized privilege
Intercept information and carry out other unlawful actions through APIs
Mobile Application Security Assessment models
Grey Box
Assessment of system security against a threat actor who has legitimate access to the application and certain privileges in the system. No source code is required for this analysis.
White Box
Assessment of application security against a threat actor who has legitimate access to the application and its source code.
What you get
Detailed technical report
A list of detected vulnerabilities with exploitation examples, classification of vulnerabilities by their impact, and detailed recommendations on how to eliminate them
Analytical summary
An executive summary with general conclusions on the system’s security level
Vulnerability elimination check
A free one-time analysis of how detected vulnerabilities have been fixed (evaluation performed within 12 months after the assessment)