Ostorlab Team
Vulnerabilities tested by Google Play Store
Google will start identifying security weaknesses in Apps pushed to the Play Store...
Mon 05 September 2016
Python Concurrency and Parallelism: building a custom ProcessPoolExecutor
At Ostorlab we scan hundreds of Mobile Applications each day, each scan is very resource intensive but at the same time, since the beginning, we had to optimize the code for speed and maximize use of cloud resources.
Mon 18 July 2016
New in Android M and N: Runtime Permissions
In Android, the permission system was one of the major security concerns of the platform for many reasons...
Fri 27 May 2016
Android SSL certificate pinning to prevent Man-in-the-middle attack
Implementing SSL certificate pinning in mobile apps to secure the communication between the user's device and the backend
Wed 11 May 2016
Reversing JNI, or how Facebook is crashing their own application
Apparently Facebook is crashing their apps intentionally in order to test users reaction and evaluate their adherence to Facebook service. This post is however not about the user's behavioral analysis, but about the technical aspects of how it is done - or just an excuse to dive into JNI reversing.
What every pentesters should learn in 2016
The last years have come with meaningful changes in the way IT professionals operate and the way we approach security...
Latest posts
Ostorlab Beta is out
We are pleased to release the Beta version of our online mobile application security scanner.
Sun 20 December 2015
Best SSL/TLS resources (Attacks, Tools, Talks)
This article will reference the best current resources on SSL/TLS.
Tue 25 August 2015
Changelog
View all changesAI-automated Attack surface, Privacy Analysis, Wordpress agent, and more.
Mon 20 January 2025
Advanced Search Query, API Endpoints, Tons of new detections, and more.
Mon 02 December 2024