{"id":1460,"date":"2021-02-27T15:08:17","date_gmt":"2021-02-27T14:08:17","guid":{"rendered":"https:\/\/www.dsecbypass.com\/application-pentest\/"},"modified":"2024-07-19T09:53:01","modified_gmt":"2024-07-19T07:53:01","slug":"application-pentest","status":"publish","type":"page","link":"https:\/\/www.dsecbypass.com\/en\/application-pentest\/","title":{"rendered":"Mobile Penetration Test – Application pentest"},"content":{"rendered":"

[et_pb_section fb_built=”1″ fullwidth=”on” next_background_color=”#101535″ admin_label=”Hero Section” _builder_version=”4.16″ background_color=”#101535″ use_background_color_gradient=”on” background_color_gradient_stops=”#3d3fc7 0%|rgba(61,63,199,0) 100%” background_color_gradient_start=”#3d3fc7″ background_color_gradient_end=”rgba(61,63,199,0)” background_image=”https:\/\/www.dsecbypass.com\/wp-content\/uploads\/2022\/01\/crypto-bg-02b.png” parallax=”on” custom_margin=”|||” custom_padding=”||0px||false|false” bottom_divider_style=”mountains” collapsed=”off” global_colors_info=”{}”][et_pb_fullwidth_header title=”Application pentest” text_orientation=”center” _builder_version=”4.27.0″ title_font=”Titillium Web||||||||” title_font_size=”66px” title_line_height=”1.5em” content_font=”||||||||” content_font_size=”18px” content_line_height=”2em” background_color=”rgba(0,0,0,0)” use_background_color_gradient=”on” background_color_gradient_stops=”rgba(16,21,53,0) 50%|#101535 100%” background_color_gradient_start=”rgba(16,21,53,0)” background_color_gradient_start_position=”50%” background_color_gradient_end=”#101535″ background_enable_image=”off” background_position=”bottom_center” custom_button_one=”on” button_one_text_size=”13px” button_one_text_color=”#4328b7″ button_one_bg_color=”#ffffff” button_one_border_width=”10px” button_one_border_color=”#ffffff” button_one_border_radius=”0px” button_one_letter_spacing=”2px” button_one_font=”Titillium Web|700||on|||||” custom_button_two=”on” button_two_text_size=”13px” button_two_text_color=”#4328b7″ button_two_bg_color=”#ffffff” button_two_border_width=”10px” button_two_border_color=”#ffffff” button_two_border_radius=”0px” button_two_letter_spacing=”2px” button_two_font=”Titillium Web|700||on|||||” width=”100%” custom_margin=”|||” child_filter_blur=”-2px” animation_style=”slide” animation_direction=”bottom” animation_duration=”1500ms” animation_intensity_slide=”2%” hover_enabled=”0″ title_font_size_tablet=”40px” title_font_size_phone=”” title_font_size_last_edited=”on|phone” content_font_size_tablet=”” content_font_size_phone=”15px” content_font_size_last_edited=”on|phone” title_text_shadow_style=”preset3″ border_radii_image=”on|8px|8px|8px|8px” box_shadow_style_image=”preset6″ button_one_letter_spacing_hover=”2px” button_two_letter_spacing_hover=”2px” global_colors_info=”{}” button_one_text_size__hover_enabled=”off” button_two_text_size__hover_enabled=”off” button_one_text_color__hover_enabled=”off” button_two_text_color__hover_enabled=”off” button_one_border_width__hover_enabled=”off” button_two_border_width__hover_enabled=”off” button_one_border_color__hover_enabled=”off” button_two_border_color__hover_enabled=”off” button_one_border_radius__hover_enabled=”off” button_two_border_radius__hover_enabled=”off” button_one_letter_spacing__hover_enabled=”on” button_one_letter_spacing__hover=”2px” button_two_letter_spacing__hover_enabled=”on” button_two_letter_spacing__hover=”2px” button_one_bg_color__hover_enabled=”off” button_two_bg_color__hover_enabled=”off” button_one_text__hover_enabled=”off|desktop” child_filter_hue_rotate__hover_enabled=”off|desktop” sticky_enabled=”0″][\/et_pb_fullwidth_header][\/et_pb_section][et_pb_section fb_built=”1″ admin_label=”Description 2″ _builder_version=”4.16″ _module_preset=”default” background_color=”#101535″ custom_padding=”0px||0px||true|false” collapsed=”off” global_colors_info=”{}”][et_pb_row column_structure=”3_5,2_5″ _builder_version=”4.16″ _module_preset=”default” animation_style=”slide” animation_direction=”bottom” animation_duration=”1500ms” animation_starting_opacity=”2%” global_colors_info=”{}”][et_pb_column type=”3_5″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_text _builder_version=”4.16″ _module_preset=”default” text_text_color=”#FFFFFF” text_font_size=”16px” header_2_text_color=”#FFFFFF” global_colors_info=”{}”]<\/p>\n

<\/span>
<\/span>
<\/span><\/p>\n

Whether it is a thick client pentest<\/strong> or a mobile application pentest<\/strong> (Android, iOS), our consultants are able to provide an in-depth analysis of their security based on<\/span> reverse engineering<\/strong> techniques and attacks on network communications and APIs.<\/span><\/p>\n

[\/et_pb_text][\/et_pb_column][et_pb_column type=”2_5″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_image src=”https:\/\/www.dsecbypass.com\/wp-content\/uploads\/2022\/01\/audit_app_v1.png” alt=”Technologie vecteur cr\u00e9\u00e9 par pikisuperstar – fr.freepik.com” title_text=”Application audit” _builder_version=”4.16″ _module_preset=”default” border_radii=”on|8px|8px|8px|8px” box_shadow_style=”preset1″ global_colors_info=”{}”][\/et_pb_image][\/et_pb_column][\/et_pb_row][\/et_pb_section][et_pb_section fb_built=”1″ admin_label=”Types de scenarios” _builder_version=”4.16″ background_color=”#101535″ custom_padding=”||0px||false|false” collapsed=”off” global_colors_info=”{}”][et_pb_row column_structure=”1_2,1_2″ _builder_version=”4.16″ custom_width_px=”1440px” global_colors_info=”{}”][et_pb_column type=”1_2″ _builder_version=”4.16″ custom_padding=”|||” global_colors_info=”{}” custom_padding__hover=”|||”][et_pb_blurb title=”Source code analysis (SAST)” _builder_version=”4.16″ header_font=”Titillium Web|700||on|||||” header_font_size=”14px” header_letter_spacing=”2px” header_line_height=”1.8em” body_font=”Source Sans Pro||||||||” body_text_color=”rgba(255,255,255,0.7)” body_font_size=”16px” body_line_height=”1.8em” background_color=”rgba(60,60,200,0.2)” text_orientation=”center” background_layout=”dark” custom_padding=”30px|16px|30px|16px” animation_style=”fold” border_width_all=”2px” border_color_all=”#4328B7″ box_shadow_style=”preset1″ box_shadow_blur=”60px” box_shadow_color=”rgba(60,60,200,0.4)” locked=”off” global_colors_info=”{}”]<\/p>\n

Identify risky practices and vulnerabilities introduced in the application source code.<\/span><\/p>\n

Analysis of application logic in native libraries or DLLs. <\/span>
<\/span><\/p>\n

[\/et_pb_blurb][\/et_pb_column][et_pb_column type=”1_2″ _builder_version=”4.16″ custom_padding=”|||” global_colors_info=”{}” custom_padding__hover=”|||”][et_pb_blurb title=”Dynamic analysis (DAST)” _builder_version=”4.16″ header_font=”Titillium Web|700||on|||||” header_font_size=”14px” header_letter_spacing=”2px” header_line_height=”1.8em” body_font=”Source Sans Pro||||||||” body_text_color=”rgba(255,255,255,0.7)” body_font_size=”16px” body_line_height=”1.8em” background_color=”rgba(60,60,200,0.2)” text_orientation=”center” background_layout=”dark” custom_padding=”30px|16px|30px|16px” animation_style=”fold” animation_delay=”300ms” border_width_all=”2px” border_color_all=”#4328B7″ box_shadow_style=”preset1″ box_shadow_blur=”60px” box_shadow_color=”rgba(60,60,200,0.4)” locked=”off” global_colors_info=”{}”]<\/p>\n

Exploitation of system vulnerabilities on thick clients (<\/span>dll hijacking, buffer overflow, Powershell \/ Bash injections<\/strong>), attacks on communications between the application and the servers based on web exploitation techniques: exploitation of weaknesses in the API, vulnerabilities in the application logic. Exploitation of services exposed by the Android application.
<\/span><\/p>\n

[\/et_pb_blurb][\/et_pb_column][\/et_pb_row][\/et_pb_section][et_pb_section fb_built=”1″ admin_label=”Use Cases” _builder_version=”4.16″ _module_preset=”default” background_color=”#101535″ custom_padding=”||0px||false|false” collapsed=”on” global_colors_info=”{}”][et_pb_row admin_label=”Row” _builder_version=”4.16″ _module_preset=”default” animation_style=”slide” global_colors_info=”{}”][et_pb_column type=”4_4″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_text _builder_version=”4.16″ text_font=”||||||||” text_font_size=”12px” header_font=”||||||||” header_2_font=”Titillium Web|600|||||||” header_2_letter_spacing=”2px” header_2_line_height=”1.3em” text_orientation=”center” background_layout=”dark” header_2_font_size_tablet=”” header_2_font_size_phone=”28px” header_2_font_size_last_edited=”on|phone” header_2_text_shadow_style=”preset2″ global_colors_info=”{}”]<\/p>\n

In which cases should you choose application penetration testing?<\/h2>\n

[\/et_pb_text][et_pb_divider color=”#4328B7″ divider_weight=”4px” _builder_version=”4.16″ max_width=”80px” module_alignment=”center” height=”4px” global_colors_info=”{}”][\/et_pb_divider][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=”1_3,2_3″ admin_label=”Row” _builder_version=”4.16″ _module_preset=”default” custom_padding=”|||16px|false|false” animation_style=”slide” border_width_all=”2px” border_color_all=”#4328b7″ box_shadow_style=”preset1″ box_shadow_blur=”60px” box_shadow_color=”rgba(60,60,200,0.4)” global_colors_info=”{}”][et_pb_column type=”1_3″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_icon font_icon=”||fa||900″ icon_width=”130px” _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][\/et_pb_icon][\/et_pb_column][et_pb_column type=”2_3″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_text _builder_version=”4.16″ _module_preset=”default” text_text_color=”#FFFFFF” text_font_size=”16px” header_2_text_color=”#FFFFFF” custom_padding=”|16px||16px|false|false” border_color_all=”#4328b7″ global_colors_info=”{}”]<\/p>\n

You develop iOS or Android mobile applications, or heavy clients (.net, Java, scripts, binaries).<\/p>\n

You want to check the security level of a third-party application.<\/p>\n

[\/et_pb_text][\/et_pb_column][\/et_pb_row][\/et_pb_section][et_pb_section fb_built=”1″ admin_label=”Modalites” _builder_version=”4.16″ _module_preset=”default” background_color=”#101535″ custom_padding=”||0px||false|false” collapsed=”on” global_colors_info=”{}”][et_pb_row admin_label=”Row” _builder_version=”4.16″ _module_preset=”default” animation_style=”slide” global_colors_info=”{}”][et_pb_column type=”4_4″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_text _builder_version=”4.16″ text_font=”||||||||” text_font_size=”12px” header_font=”||||||||” header_2_font=”Titillium Web|600|||||||” header_2_letter_spacing=”2px” header_2_line_height=”1.3em” text_orientation=”center” background_layout=”dark” header_2_font_size_tablet=”” header_2_font_size_phone=”28px” header_2_font_size_last_edited=”on|phone” header_2_text_shadow_style=”preset2″ global_colors_info=”{}”]<\/p>\n

Mission organization<\/h2>\n

[\/et_pb_text][et_pb_divider color=”#4328B7″ divider_weight=”4px” _builder_version=”4.16″ max_width=”80px” module_alignment=”center” height=”4px” global_colors_info=”{}”][\/et_pb_divider][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=”3_5,2_5″ admin_label=”Row” _builder_version=”4.16″ _module_preset=”default” custom_padding=”|16px||16px|false|true” animation_style=”slide” border_width_all=”2px” border_color_all=”#4328b7″ box_shadow_style=”preset1″ box_shadow_blur=”60px” box_shadow_color=”rgba(60,60,200,0.4)” global_colors_info=”{}”][et_pb_column type=”3_5″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_text _builder_version=”4.16″ _module_preset=”default” text_text_color=”#FFFFFF” text_font_size=”16px” header_2_text_color=”#FFFFFF” border_color_all=”#4328b7″ global_colors_info=”{}”]<\/p>\n

An initiation meeting makes it possible to identify the needs and scope of the mission, as well as any constraints.<\/p>\n

A legal mandate between the different parties is published in order to supervise DSecBypass<\/strong>‘s<\/span> audit service.<\/p>\n

The consultant in charge of the mission can be reached at any time during its execution and informs the customer in the event of a critical discovery.<\/p>\n

[\/et_pb_text][\/et_pb_column][et_pb_column type=”2_5″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_icon font_icon=”g||divi||400″ icon_width=”150px” _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][\/et_pb_icon][\/et_pb_column][\/et_pb_row][\/et_pb_section][et_pb_section fb_built=”1″ admin_label=”Results” _builder_version=”4.16″ _module_preset=”default” background_color=”#101535″ custom_padding=”||0px||false|false” collapsed=”on” global_colors_info=”{}”][et_pb_row admin_label=”Row” _builder_version=”4.16″ _module_preset=”default” animation_style=”slide” global_colors_info=”{}”][et_pb_column type=”4_4″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_text _builder_version=”4.16″ text_font=”||||||||” text_font_size=”12px” header_font=”||||||||” header_2_font=”Titillium Web|600|||||||” header_2_letter_spacing=”2px” header_2_line_height=”1.3em” text_orientation=”center” background_layout=”dark” header_2_font_size_tablet=”” header_2_font_size_phone=”28px” header_2_font_size_last_edited=”on|phone” header_2_text_shadow_style=”preset2″ global_colors_info=”{}”]<\/p>\n

Penetration test results<\/h2>\n

[\/et_pb_text][et_pb_divider color=”#4328B7″ divider_weight=”4px” _builder_version=”4.16″ max_width=”80px” module_alignment=”center” height=”4px” global_colors_info=”{}”][\/et_pb_divider][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=”1_3,2_3″ admin_label=”Row” _builder_version=”4.16″ _module_preset=”default” custom_padding=”|16px||16px|false|true” animation_style=”slide” border_width_all=”2px” border_color_all=”#4328b7″ box_shadow_style=”preset1″ box_shadow_blur=”60px” box_shadow_color=”rgba(60,60,200,0.4)” global_colors_info=”{}”][et_pb_column type=”1_3″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_icon font_icon=”||fa||900″ icon_width=”150px” _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][\/et_pb_icon][\/et_pb_column][et_pb_column type=”2_3″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_text _builder_version=”4.16″ _module_preset=”default” text_text_color=”#FFFFFF” text_font_size=”16px” header_2_text_color=”#FFFFFF” border_color_all=”#4328b7″ global_colors_info=”{}”]<\/p>\n

The deliverables of the mission include a report as well as two optional restitutions.<\/p>\n

The report includes a summary of the results as well as the details of the identified vulnerabilities and recommendations.<\/p>\n

The technical restitution is an opportunity for the consultant to present his approach and his results in an interactive way, and to discuss with the client and his teams on the action plan. Managerial restitution makes it possible to address an executive audience.<\/p>\n

[\/et_pb_text][\/et_pb_column][\/et_pb_row][\/et_pb_section][et_pb_section fb_built=”1″ prev_background_color=”#101535″ admin_label=”Contact” _builder_version=”4.16″ _module_preset=”default” use_background_color_gradient=”on” background_color_gradient_stops=”#12163d 0%|#2b2996 100%” background_color_gradient_start=”#12163d” background_color_gradient_end=”#2b2996″ background_image=”https:\/\/www.dsecbypass.com\/wp-content\/uploads\/2022\/01\/crypto-bg-02b.png” parallax=”on” top_divider_style=”arrow2″ collapsed=”on” global_colors_info=”{}”][et_pb_row admin_label=”Row” _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_column type=”4_4″ _builder_version=”4.16″ _module_preset=”default” global_colors_info=”{}”][et_pb_button button_url=”@ET-DC@eyJkeW5hbWljIjp0cnVlLCJjb250ZW50IjoicG9zdF9saW5rX3VybF9wYWdlIiwic2V0dGluZ3MiOnsicG9zdF9pZCI6IjExIiwiZW5hYmxlX2h0bWwiOiJvZmYifX0=@” button_text=”Contact us” button_alignment=”center” _builder_version=”4.16″ _dynamic_attributes=”button_url” _module_preset=”default” background_layout=”dark” global_colors_info=”{}”][\/et_pb_button][\/et_pb_column][\/et_pb_row][\/et_pb_section]<\/p>\n","protected":false},"excerpt":{"rendered":"

Whether it is a thick client pentest or a mobile application pentest (Android, iOS), our consultants are able to provide an in-depth analysis of their security based on reverse engineering techniques and attacks on network communications and APIs.Identify risky practices and vulnerabilities introduced in the application source code. Analysis of application logic in native libraries […]<\/p>\n","protected":false},"author":2,"featured_media":1201,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_et_pb_use_builder":"on","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"class_list":["post-1460","page","type-page","status-publish","has-post-thumbnail","hentry"],"_links":{"self":[{"href":"https:\/\/www.dsecbypass.com\/en\/wp-json\/wp\/v2\/pages\/1460","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dsecbypass.com\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.dsecbypass.com\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.dsecbypass.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dsecbypass.com\/en\/wp-json\/wp\/v2\/comments?post=1460"}],"version-history":[{"count":28,"href":"https:\/\/www.dsecbypass.com\/en\/wp-json\/wp\/v2\/pages\/1460\/revisions"}],"predecessor-version":[{"id":3512,"href":"https:\/\/www.dsecbypass.com\/en\/wp-json\/wp\/v2\/pages\/1460\/revisions\/3512"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.dsecbypass.com\/en\/wp-json\/wp\/v2\/media\/1201"}],"wp:attachment":[{"href":"https:\/\/www.dsecbypass.com\/en\/wp-json\/wp\/v2\/media?parent=1460"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}