Please enable JavaScript.
Coggle requires JavaScript to display documents.
sec of mobile app - Coggle Diagram
sec of mobile app
security measures
Https
jamais enregistrer les donnes sensiblse au niveau du service
offusquer le code source
implementer le principe de Source By Design
filtrage des entres et sorties des utilisateurs
apps types
hybrid
web app
native
Surfaces d'attaques
Web View (Find URL Bicuz its the web app source is what matters)
Retro ingenierie (find url within the code)
Url can be read directly throught the code but sometimes we find it distributed into vars in the code and concatenated back when needed for that we need specialised tools to find it
Analyse de traffic (watch app talking to site)
Hybrid
WebView
xss
Sql injection
Framework
native
Client attackss
Net attacks
App mapping
Platform mapping
Server Attacks
apps analysing methods
Statique
BakSmali
Dex2jar
Dynamique
outils d'audit
Procank
Strace
ADB
Intent sniffer
app test