Ostorlab: Mobile App Security Testing for Android and iOS

Finding superhuman XSS polyglot payloads with Genetic Algorithms

The following article is a technical deep dive into how genetic algorithms can be leveraged to create superhuman XSS polyglot payloads.

Alaeddine Mesbahi


            Mon 01 March 2021

Security

Ostorlab adds Web Security Scanning to its arsenal

Ostorlab is adding Web Security Scanner to its arsenal with novel approaches to vulnerability discovery.

Alaeddine Mesbahi


                  Mon 15 February 2021

Product

Release of a new analysis environment to aid manual assessment

New Analysis Environment with access to disassembly, decompiled source, call trace, function tagging and many other features.

Martin Salis


                  Mon 11 January 2021

Product

Whether we are developing a mobile application or assessing its security, we need to continuously review it with every new release. Repetitively building the app, uploading the file, and creating a scan quickly becomes an annoyance. Ostorlab is excited to announce the introduction of two new features to ease the burden of testing your app.

Alaeddine Mesbahi


                    Sat 24 October 2020

Product

October 2020

We are pleased to announce a set of new improvements

Ostorlab Team


                    Thu 01 October 2020

Product

September 2020

We are pleased to announce a set of new improvements

Ostorlab Team


                    Tue 01 September 2020

Product

Create scans directly from the Android and iOS Store

Ostorlab now supports creating scans directly from Android Play Store and iOS App Store

Alaeddine Mesbahi


                    Sun 16 August 2020

Product

August 2020

We are pleased to announce a set of new improvements

Ostorlab Team


                    Sat 01 August 2020

Changelog

View all changes

AI-automated Attack surface, Privacy Analysis, Wordpress agent, and more.


                  Mon 20 January 2025

Advanced Search Query, API Endpoints, Tons of new detections, and more.


                  Mon 02 December 2024

Revamped Search, new detection capabilities, actively exploited CVEs and much more.


                  Tue 22 October 2024

HTTP2, Private Custom Checks, actively exploited CVE and much more.


                  Mon 07 October 2024

9 of 14

Finding superhuman XSS polyglot payloads with Genetic Algorithms

News and Updates of Week 8

Ostorlab adds Web Security Scanning to its arsenal

February 2021

Release of a new analysis environment to aid manual assessment

January 2021

Latest posts

December 2020

Finding and Validating Hardcoded Keys and Secrets

Autonomous Security: Pushing Security Automation to the Next Level

Two efficient features to continuously monitor mobile applications

October 2020

September 2020

Create scans directly from the Android and iOS Store

August 2020

Changelog

AI-automated Attack surface, Privacy Analysis, Wordpress agent, and more.

Advanced Search Query, API Endpoints, Tons of new detections, and more.

Revamped Search, new detection capabilities, actively exploited CVEs and much more.

HTTP2, Private Custom Checks, actively exploited CVE and much more.

Finding superhuman XSS polyglot payloads with Genetic Algorithms

News and Updates of Week 8

Ostorlab adds Web Security Scanning to its arsenal

February 2021

Release of a new analysis environment to aid manual assessment

January 2021

Latest posts

December 2020

Finding and Validating Hardcoded Keys and Secrets

Autonomous Security: Pushing Security Automation to the Next Level

Two efficient features to continuously monitor mobile applications

October 2020

September 2020

Create scans directly from the Android and iOS Store

August 2020

Changelog

AI-automated Attack surface, Privacy Analysis, Wordpress agent, and more.

Advanced Search Query, API Endpoints, Tons of new detections, and more.

Revamped Search, new detection capabilities, actively exploited CVEs and much more.

HTTP2, Private Custom Checks, actively exploited CVE and much more.

Subscribe to the Ostorlab Newsletter