In this chapter, we have learned about the different types of vulnerabilities that are merely a combination of implementation and coding mistakes. We learned about the OWASP mobile Top 10 vulnerabilities, ranging from insecure storage, binary patching, cryptographic flaws, and network flaws to different ways to circumvent the security controls that are put in place by Apple. We also looked at some serious mistakes that a developer can potentially make during the development of the app, leaving backdoor information hardcoded and the disclosure of algorithms and other app critical functions that can be exploited. We now know how to attack both Android and iOS apps in general, from basic to medium level to identify vulnerabilities. Developers have the real responsibility on their shoulders when it comes to creating apps that have minimal security threats. We will discuss how we can achieve a reduction in the risk to apps to an acceptable level in the next chapter, Securing Your Android...
- Tech Categories
- Best Sellers
- New Releases
- Books
- Videos
- Audiobooks
Tech Categories Popular Audiobooks
- Articles
- Newsletters
- Free Learning
You're reading from Mobile Application Penetration Testing
Vijay Kumar Velu is a passionate information security practitioner, author, speaker, investor, and blogger. He has 16+ years of IT industry experience, is a licensed penetration tester and is specialized in providing technical solutions to diverse cyber problems, ranging from simple security configuration reviews to cyber threat intelligence. Vijay holds multiple security qualifications, including CEH, ECSA, and CHFI. He has authored a few books on penetration testing: Mastering Kali Linux for Advanced Penetration Testing – Second & Third Editions, and Mobile Application Penetration Testing. For the community, Vijay serves as the chair member of NCDRC, India. When not working, he enjoys playing music and doing charity work.
Read more about Vijay Kumar Velu
Unlock this book and the full library FREE for 7 days
Author (1)
Vijay Kumar Velu is a passionate information security practitioner, author, speaker, investor, and blogger. He has 16+ years of IT industry experience, is a licensed penetration tester and is specialized in providing technical solutions to diverse cyber problems, ranging from simple security configuration reviews to cyber threat intelligence. Vijay holds multiple security qualifications, including CEH, ECSA, and CHFI. He has authored a few books on penetration testing: Mastering Kali Linux for Advanced Penetration Testing – Second & Third Editions, and Mobile Application Penetration Testing. For the community, Vijay serves as the chair member of NCDRC, India. When not working, he enjoys playing music and doing charity work.
Read more about Vijay Kumar Velu