Hacking Mandated Apps – Part 3: What is SSL? [ MSTG-NETWORK-1 ]

Previous blog posts you might have missed and maybe you would like to read first for background: Part 1: Intro Part 2: Translating APKs The OWASP Mobile Application Security Verification Standard classifies the flaw explained in this blog post, under section V5: Network Communication Requirements, as follows: MSTG-NETWORK-1: Data is encrypted on the network using …

OWTF 1.0 “Lionheart”: Brucon 5×5 video, slides and more

REMINDER: We just released OWTF 1.0 “Lionheart”, Please try it and give us feedback! Just a quick note to say that the materials used by the OWTF Crew during the Brucon 5×5 presentations are now online: Slides here: https://speakerdeck.com/tunnelshade/brucon-2014-5by5-owasp-owtf OWTF 1.0 “Lionheart” – Brucon 5×5 Video: Talk structure and higher resolution demos (From minute: 0) Introduction to OWTF and discussion of the Web …