Robuta

https://mas.owasp.org/MASTG/knowledge/android/MASVS-STORAGE/MASTG-KNOW-0041/ MASTG-KNOW-0041: Internal Storage - OWASP Mobile Application Security owasp mobile applicationinternal storagemastgknow0041 https://mas.owasp.org/MASTG/demos/android/MASVS-AUTH/MASTG-DEMO-0092/MASTG-DEMO-0092/ MASTG-DEMO-0092: Uses of BiometricPrompt without Explicit User Confirmation with semgrep - OWASP... mastg demo0092useswithoutexplicit https://mas.owasp.org/MASTG/tests/android/MASVS-RESILIENCE/MASTG-TEST-0249/ MASTG-TEST-0249: Runtime Use of Secure Screen Lock Detection APIs - OWASP Mobile Application... owasp mobile applicationmastg testscreen lock0249runtime https://mas.owasp.org/MASTG/tools/android/MASTG-TOOL-0124/ MASTG-TOOL-0124: aapt2 - OWASP Mobile Application Security owasp mobile applicationmastg tool0124security https://mas.owasp.org/MASTG/best-practices/MASTG-BEST-0006/ MASTG-BEST-0006: Use Up-to-Date APK Signing Schemes - OWASP Mobile Application Security owasp mobile applicationdate apkmastgbest0006 https://mas.owasp.org/MASTG/tools/ios/MASTG-TOOL-0062/ MASTG-TOOL-0062: Plutil - OWASP Mobile Application Security owasp mobile applicationmastg tool0062security https://mas.owasp.org/MASTG/tools/network/MASTG-TOOL-0076/ MASTG-TOOL-0076: bettercap - OWASP Mobile Application Security owasp mobile applicationmastg tool0076bettercapsecurity https://mas.owasp.org/MASTG/tests/android/MASVS-NETWORK/MASTG-TEST-0021/ MASTG-TEST-0021: Testing Endpoint Identify Verification - OWASP Mobile Application Security owasp mobile applicationmastg test0021testingendpoint https://mas.owasp.org/MASTG/techniques/ios/MASTG-TECH-0112/ MASTG-TECH-0112: Obtaining the Code Signature Format Version - OWASP Mobile Application Security owasp mobile applicationmastg techformat version0112obtaining https://mas.owasp.org/MASTG/demos/ios/MASVS-RESILIENCE/MASTG-DEMO-0026/MASTG-DEMO-0026/ MASTG-DEMO-0026: Runtime Use of LAContext.canEvaluatePolicy with Frida - OWASP Mobile Application... owasp mobile applicationmastg demo0026runtimeuse https://mas.owasp.org/MASTG/tests/android/MASVS-CODE/MASTG-TEST-0034/ MASTG-TEST-0034: Testing Object Persistence - OWASP Mobile Application Security owasp mobile applicationmastg test0034testingobject https://mas.owasp.org/MASTG/demos/android/MASVS-STORAGE/MASTG-DEMO-0020/MASTG-DEMO-0020/ MASTG-DEMO-0020: Data Exclusion using backup_rules.xml with Backup Manager - OWASP Mobile... mastg demoowasp mobile0020dataexclusion https://mas.owasp.org/MASTG/demos/android/MASVS-PLATFORM/MASTG-DEMO-0029/MASTG-DEMO-0029/ MASTG-DEMO-0029: Uses of WebViews Allowing Content Access with semgrep - OWASP Mobile Application... owasp mobile applicationmastg democontent access0029uses https://mas.owasp.org/MASTG/tests/android/MASVS-AUTH/MASTG-TEST-0327/ MASTG-TEST-0327: References to APIs for Event-Bound Biometric Authentication - OWASP Mobile... mastg testbiometric authenticationowasp mobile0327references https://mas.owasp.org/MASTG/techniques/ios/MASTG-TECH-0113/ MASTG-TECH-0113: Obtaining Debugging Symbols - OWASP Mobile Application Security owasp mobile applicationmastg tech0113obtainingdebugging https://mas.owasp.org/MASTG/techniques/ios/MASTG-TECH-0067/ MASTG-TECH-0067: Dynamic Analysis on iOS - OWASP Mobile Application Security owasp mobile applicationmastg techdynamic analysis0067ios https://mas.owasp.org/MASTG/techniques/android/MASTG-TECH-0109/ MASTG-TECH-0109: Intercepting Flutter HTTPS Traffic - OWASP Mobile Application Security owasp mobile applicationmastg tech0109interceptingflutter https://mas.owasp.org/MASTG/tests/android/MASVS-CODE/MASTG-TEST-0223/ MASTG-TEST-0223: Stack Canaries Not Enabled - OWASP Mobile Application Security owasp mobile applicationmastg test0223stackcanaries https://mas.owasp.org/MASTG/techniques/android/MASTG-TECH-0043/ MASTG-TECH-0043: Method Hooking - OWASP Mobile Application Security owasp mobile applicationmastg tech0043methodhooking https://mas.owasp.org/MASTG/apps/android/MASTG-APP-0009/ MASTG-APP-0009: DVHMA - OWASP Mobile Application Security owasp mobile applicationmastg0009security https://mas.owasp.org/MASTG/techniques/android/MASTG-TECH-0014/ MASTG-TECH-0014: Static Analysis on Android - OWASP Mobile Application Security owasp mobile applicationmastg techstatic analysis0014android https://mas.owasp.org/MASTG/tests/android/MASVS-PLATFORM/MASTG-TEST-0315/ MASTG-TEST-0315: Sensitive Data Exposed via Notifications - OWASP Mobile Application Security owasp mobile applicationmastg testsensitive dataexposed via0315 https://mas.owasp.org/contributing/writing-content/mastg-best-practice.instructions/ Writing MASTG Best Practices Files - OWASP Mobile Application Security owasp mobile applicationbest practiceswritingmastgfiles https://mas.owasp.org/MASTG/knowledge/ios/MASVS-RESILIENCE/MASTG-KNOW-0086/ MASTG-KNOW-0086: File Integrity Checks - OWASP Mobile Application Security owasp mobile applicationfile integritymastgknow0086 https://mas.owasp.org/MASTG/tools/ios/MASTG-TOOL-0135/ MASTG-TOOL-0135: PlistBuddy - OWASP Mobile Application Security owasp mobile applicationmastg tool0135security https://mas.owasp.org/MASTG/tests/android/MASVS-RESILIENCE/MASTG-TEST-0039/ MASTG-TEST-0039: Testing whether the App is Debuggable - OWASP Mobile Application Security owasp mobile applicationmastg test0039testingwhether https://mas.owasp.org/MASTG/tests/android/MASVS-PLATFORM/MASTG-TEST-0024/ MASTG-TEST-0024: Testing for App Permissions - OWASP Mobile Application Security owasp mobile applicationmastg test0024testingpermissions https://mas.owasp.org/MASTG/tests/android/MASVS-RESILIENCE/MASTG-TEST-0265/ MASTG-TEST-0265: References to StrictMode APIs - OWASP Mobile Application Security owasp mobile applicationmastg test0265referencesstrictmode