Skip to content
/ owasp-mastg Public

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

mas.owasp.org/

License

CC-BY-SA-4.0 license
12.1k stars 2.4k forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

OWASP/owasp-mastg

31 Branches18 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

sushi2ksushi2k
Merge pull request #3254 from userdehghani/master
Apr 13, 2025
0e9a96b · Apr 13, 2025

History

8,621 Commits
.devcontainer
.devcontainer
Jul 14, 2024
.github
.github
Apr 7, 2025
.vscode
.vscode
Mar 24, 2025
Crackmes
Crackmes
Oct 2, 2022
Document
Document
Apr 12, 2025
Samples/Android
Samples/Android
Aug 10, 2018
apps
apps
Aug 4, 2024
best-practices
best-practices
Mar 12, 2025
demos
demos
Apr 7, 2025
docs
docs
Apr 9, 2025
prerequisites
prerequisites
Feb 14, 2024
rules
rules
Apr 7, 2025
src
src
Apr 2, 2025
techniques
techniques
Mar 27, 2025
tests-beta
tests-beta
Mar 28, 2025
tests
tests
Apr 7, 2025
tools
tools
Mar 12, 2025
utils
utils
Mar 14, 2025
weaknesses
weaknesses
Apr 7, 2025
.dockerignore
.dockerignore
Jul 14, 2024
.gitignore
.gitignore
Mar 16, 2025
.markdownlinkcheck.json
.markdownlinkcheck.json
May 14, 2019
.markdownlint-cli2.jsonc
.markdownlint-cli2.jsonc
Mar 12, 2025
.markdownlint.jsonc
.markdownlint.jsonc
Mar 12, 2025
CHANGELOG.md
CHANGELOG.md
Sep 5, 2022
CITATION.cff
CITATION.cff
Sep 5, 2022
Dockerfile
Dockerfile
Aug 4, 2024
License.md
License.md
Mar 12, 2025
README.md
README.md
Jul 28, 2024
about_cookies.md
about_cookies.md
Oct 8, 2023
cover.pdf
cover.pdf
Sep 4, 2022
cover.png
cover.png
Sep 6, 2022
mkdocs.yml
mkdocs.yml
Mar 16, 2025
run_web.sh
run_web.sh
Mar 16, 2025

Repository files navigation

OWASP Mobile Application Security Testing Guide (MASTG)

OWASP Flagship Creative Commons License

Document Build Markdown Linter URL Checker

This is the official GitHub Repository of the OWASP Mobile Application Security Testing Guide (MASTG). The MASTG is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the controls listed in the OWASP Mobile Application Verification Standard (MASVS).




Trusted by

The OWASP MASVS and MASTG are trusted by the following platform providers and standardization, governmental and educational institutions. Learn more.


🥇 MAS Advocates

MAS Advocates are industry adopters of the OWASP MASVS and MASTG who have invested a significant and consistent amount of resources to push the project forward by providing consistent high-impact contributions and continuously spreading the word. Learn more.




Connect with Us


Other Formats

About

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

mas.owasp.org/

Topics

android ios static-analysis reverse-engineering hacking mobile-app android-application ios-app dynamic-analysis pentesting mobile-security network-analysis mast reverse-enginnering runtime-analysis mstg testing-cryptography compliancy-checklist mastg

Resources

Readme

License

CC-BY-SA-4.0 license

Code of conduct

Code of conduct

Security policy

Security policy

Citation

Cite this repository
Loading
Activity
Custom properties

Stars

12.1k stars

Watchers

420 watching

Forks

2.4k forks
Report repository

Releases 17

v1.7.0 Latest
Oct 31, 2023
+ 16 releases

Sponsor this project

Contributors 240

+ 226 contributors

Languages