Mobile and Desktop application developers, like web developers, are generally:
Adversaries can take advantage of this by running your apps in their environment, to identify and exploit overlooked security flaws, which may negatively affect your organization or your customers.
A mobile or desktop application penetration test facilitates the identification of security flaws before real attackers can take advantage of them. Furthermore, the mitigation guidance provided will substantially reduce the likelihood of certain attack vectors in the future. Any penetration tester can confirm this for you: It is extremely difficult to find any serious security issue in any application that has been tested professionally multiple times (when the developers have also implemented the suggested fixes each time).
We do not lock ourselves into any particular list and will review your security from the perspective of a real attacker, using manual testing techniques and also automation where needed, but in a controlled fashion and always with your permission. That said, our application penetration tests typically cover the OWASP Mobile Top 10 and the relevant tests from the OWASP Mobile Security Testing Guide applicable to the target application. Some examples of this are public. We focus on high impact application areas to ensure that critical issues are identified and subsequently eliminated. However, we will always tailor the test to meet your specific needs, for example, maybe your threat model is different and you are worried about a different type of attacker or what your application is trying to protect is simply something not standard, we can help you with that.
Simply contact us, let us know what you need to test. We will revert with some questions to understand the scope, schedule the test and tailor the test to meet your needs, for free. If you want to proceed, we will send you an offer for signing and coordinate the steps together from there.