Skip to content
/ owasp-mastg Public

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

mas.owasp.org/

License

CC-BY-SA-4.0 license
12k stars 2.4k forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

OWASP/owasp-mastg

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8,382 Commits
.devcontainer
.devcontainer
 
 
.github
.github
 
 
.vscode
.vscode
 
 
Crackmes
Crackmes
 
 
Document
Document
 
 
Samples/Android
Samples/Android
 
 
apps
apps
 
 
best-practices
best-practices
 
 
demos
demos
 
 
docs
docs
 
 
prerequisites
prerequisites
 
 
rules
rules
 
 
src
src
 
 
techniques
techniques
 
 
tests-beta
tests-beta
 
 
tests
tests
 
 
tools
tools
 
 
weaknesses
weaknesses
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
.markdownlinkcheck.json
.markdownlinkcheck.json
 
 
.markdownlint-cli2.jsonc
.markdownlint-cli2.jsonc
 
 
.markdownlint.jsonc
.markdownlint.jsonc
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CITATION.cff
CITATION.cff
 
 
Dockerfile
Dockerfile
 
 
License.md
License.md
 
 
README.md
README.md
 
 
about_cookies.md
about_cookies.md
 
 
book.json
book.json
 
 
cover.pdf
cover.pdf
 
 
cover.png
cover.png
 
 
mkdocs.yml
mkdocs.yml
 
 
run_web.sh
run_web.sh
 
 

Repository files navigation

OWASP Mobile Application Security Testing Guide (MASTG)

OWASP Flagship Creative Commons License

Document Build Markdown Linter URL Checker

This is the official GitHub Repository of the OWASP Mobile Application Security Testing Guide (MASTG). The MASTG is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the controls listed in the OWASP Mobile Application Verification Standard (MASVS).




Trusted by

The OWASP MASVS and MASTG are trusted by the following platform providers and standardization, governmental and educational institutions. Learn more.


🥇 MAS Advocates

MAS Advocates are industry adopters of the OWASP MASVS and MASTG who have invested a significant and consistent amount of resources to push the project forward by providing consistent high-impact contributions and continuously spreading the word. Learn more.




Connect with Us


Other Formats

About

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

mas.owasp.org/

Topics

android ios static-analysis reverse-engineering hacking mobile-app android-application ios-app dynamic-analysis pentesting mobile-security network-analysis mast reverse-enginnering runtime-analysis mstg testing-cryptography compliancy-checklist mastg

Resources

Readme

License

CC-BY-SA-4.0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

12k stars

Watchers

423 watching

Forks

2.4k forks
Report repository

Releases 17

v1.7.0 Latest
Oct 31, 2023
+ 16 releases

Sponsor this project

Contributors 237

+ 223 contributors

Languages