About
If you have a mobile application which is used by a large number of staff, or is deployed to end users, attackers may be able to use it to gain access to other users’ data or exploit the backing applications.
How we can help
Pākiki can review your mobile applications on both iOS and Android. We start by looking at the APIs and any wrapped web applications for vulnerabilities in line with the OWASP Testing Methodology.
Additionally, for mobile applications, we check:
- Whether appropriate reverse engineering countermeasures are built in.
- The Binary exploitation countermeasures.
- Whether all data is stored and processed on the device in an appropriate manner which prevents unauthorised people from gaining access to it.
- How biometrics are used by the application.
- That all encryption used by the app is appropriate.
Get in touch
We’d love to hear more about your application, and how we can help.