Security Testing – Digital Wallet Mobile / Web

Whitepapers + Case Studies Arun R M today17th August 2021 145 162 4

Background
share close

👉 VAPT of Digital Wallet application

👉 Validating Mobile Application, Web Application

👉 Security Hardening of API, Mobile and Web


SCOPE

✔️ Audit Digital Wallet Application for Web and Mobile Platforms

✔️ Conduct Penetration Test Manually, Automatic and suggest countermeasures

✔️ Provide Server Hardening steps to countermeasure Security attacks


TESTING SERVICES

✔️ Perform Penetration Testing on Web App and Mobile Application (Manually & Automatically)

✔️ Conduct Security Assessments for iOS and Android Application

✔️ Manually validate API’s integrated into the system

✔️ Provide Detail Summary of Vulnerabilities identified

✔️ Assess Applications (Web, Database) across Protocols like HTTP/HTTPS, also identify vulnerabilities in Communication


KEY ACHIEVEMENTS

✔️ Interesting Vulnerabilities have been identified using assessment across multiple interfaces and Provided Hardening Guidelines


Sample Vulnerabilities

check Cookies enabled for third party in Mobile

check Web Interface Analysis

check Insecure Data Storage in Android

check Insecure Data

check Insecure API for Web and Mobile

check Untrusted References (URL/ Libs)

check URL Redirection in Web Interface

check Authentication

check Possibility of Data Interception in Mobile


Standards followed

OWASP, CIS

OWASP, SANS, CWE List

Written by: Arun R M

Tagged as: , , , , , .

Rate it
Previous post

Similar posts

Post comments (0)

Leave a reply

Your email address will not be published. Required fields are marked *

Open chat
1
Hello👋

Welcome to Cynorsense

How can we help you?