MCPcopy
hub / github.com/OWASP/mastg

github.com/OWASP/mastg @v2.0.0 sqlite

repository ↗ · DeepWiki ↗ · release v2.0.0 ↗
424 symbols 951 edges 80 files 3 documented · 1%
README

OWASP Mobile Application Security Testing Guide (MASTG)

OWASP Flagship Creative Commons License

Markdown Linter URL Checker

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the controls listed in the OWASP Mobile Application Verification Standard (MASVS).

OWASP MAS: OWASP MASVSOWASP MASWEOWASP MASTG

Trusted by

The OWASP MASVS, MASWE and MASTG are trusted by the following platform providers and standardization, governmental and educational institutions. Learn more.

🥇 MAS Advocates

MAS Advocates are industry adopters of the OWASP MASVS, MASWE and MASTG who have invested a significant and consistent amount of resources to push the project forward by providing consistent high-impact contributions and continuously spreading the word. Learn more.

Core symbols most depended-on inside this repo

logIfApp
called by 15
demos/android/MASVS-RESILIENCE/MASTG-DEMO-0114/script.js
describeObjCObject
called by 8
demos/ios/MASVS-PRIVACY/MASTG-DEMO-0127/script.js
out
called by 7
demos/ios/MASVS-RESILIENCE/MASTG-DEMO-0125/script.js
hookExport
called by 7
demos/ios/MASVS-RESILIENCE/MASTG-DEMO-0125/script.js
hookMethod
called by 7
demos/ios/MASVS-PRIVACY/MASTG-DEMO-0127/script.js
hookNoArgString
called by 6
demos/android/MASVS-RESILIENCE/MASTG-DEMO-0114/script.js
logKeyDetails
called by 5
demos/android/MASVS-CRYPTO/MASTG-DEMO-0072/script.js
logStackTrace
called by 5
demos/android/MASVS-CRYPTO/MASTG-DEMO-0072/script.js

Shape

Method 255
Function 104
Class 65

Languages

Java75%
TypeScript19%
Python6%

Modules by API surface

demos/android/MASVS-AUTH/MASTG-DEMO-0090/MastgTest_reversed.java18 symbols
demos/android/MASVS-CODE/MASTG-DEMO-0102/MastgTest_reversed.java17 symbols
demos/android/MASVS-PLATFORM/MASTG-DEMO-0121/MastgTest_reversed.java15 symbols
demos/android/MASVS-CODE/MASTG-DEMO-0100/MastgTest_reversed.java15 symbols
demos/android/MASVS-RESILIENCE/MASTG-DEMO-0101/MastgTest_reversed.java13 symbols
demos/android/MASVS-NETWORK/MASTG-DEMO-0055/MastgTest_reversed.java12 symbols
demos/android/MASVS-AUTH/MASTG-DEMO-0089/MastgTest_reversed.java12 symbols
demos/android/MASVS-NETWORK/MASTG-DEMO-0054/MastgTest_reversed.java10 symbols
src/scripts/yaml_to_excel.py9 symbols
demos/ios/MASVS-RESILIENCE/MASTG-DEMO-0119/bypass.js9 symbols
demos/ios/MASVS-RESILIENCE/MASTG-DEMO-0118/script.js9 symbols
demos/ios/MASVS-RESILIENCE/MASTG-DEMO-0117/script.js9 symbols

Dependencies from manifests, versioned

Pillow12.2.0 · 1×
bs40.0.2 · 1×
lxml6.1.0 · 1×
openpyxl3.1.5 · 1×
pandas2.3.0 · 1×
pyyaml6.0.2 · 1×
requests2.33.0 · 1×
tabulate0.9.0 · 1×

For agents

$ claude mcp add mastg \
  -- python -m otcore.mcp_server <graph>

⬇ download graph artifact