Mobile scanning

ASoC can perform interactive and static analysis of iOS and Android applications.

Mobile app code can be scanned with Static Analysis (SAST), and backend server applications with Dynamic Analysis (DAST):
For customers using the legacy Mobile Analysis feature: ASoC can perform runtime security analysis for Android and iOS apps. By uploading the application image (APK or IPA files) a runtime analysis is performed, and issues found are provided with reproduction instructions for ease of debugging and resolution. As with dynamic analysis, pre-production mobile apps with service backends accessible only within the organization can be tested using the Private Site Scanning technology.For a listing of Threat Classes tested for in Mobile Analysis, and their related CWEs, see Mobile Analysis Threat Classes.