Source Code Analysis
App source code analysis allows to reveal vulnerabilities, errors or undeclared capabilities, which result in data compromise, gaining unauthorized access or business processes disruption.
Software code verification, performed while using static and dynamic analysis methods, is carried out at the creation stage and before launching the software. Errors in the program code may result in well-functioning business processes failure and may finally destroy or damage databases, for example.
The main analysis goals:
- Identify vulnerabilities and weaknesses in the architecture.
- Detect dangerous development approach.
- Assess the revealed vulnerabilities.
Source code analysis in 33 languages:
Files analysis in 9 formats:
JAR/WAR/EAR/AAR (Java/Scala), DLL/EXE (C/C++), APK (Android), IPA (Apple iOS), APP (Apple macOS).
General project plan
App architecture analysis.
Static source code and libraries analysis.
API methods security assessment.
Data transmission channels security assessment.
Storage mechanisms analysis.
Undeclared opportunities revealing.
Report, containing the revealed vulnerabilities and deficiencies, recommendations for their elimination. Estimated confidence level vulnerability analysis