Identify security vulnerabilities in your mobile applications
IBM Security AppScan® Mobile Analyzer is designed to help secure your organization’s mobile applications, by detecting dozens of today’s most pervasive published security vulnerabilities. It is available for trial and purchase in the IBM Cloud Marketplace.
As part of the application development lifecycle, IBM Security AppScan Mobile Analyzer helps eliminate security vulnerabilities from mobile applications before they are placed into production and deployed. It provides convenient application scanning without requiring significant training or advance preparation.
IBM Security AppScan Mobile Analyzer:
- Scans mobile applications at the appropriate stage of your development lifecycle.
- Identifies security vulnerabilities to malware and other security threats.
- Delivers a detailed report that explains the vulnerability, your potential risk and best practices to remediate it.
Scans mobile applications
- Uses IBM mobile interactive application security testing (IAST) technology.
- Provides an intuitive user interface.
- Explores applications to discover elements that should be tested.
- Analyzes manifest files and dynamically learns of intent parameters.
- Sends intents with malicious payloads using security knowledge.
Identifies security vulnerabilities
- Sends intents with malicious payloads using IBM Security knowledge.
- Simulates attacks to trigger vulnerabilities.
- Places hooks on target mobile applications.
- Detects many types of issues, including: Cross-Application Scripting (XAS), Insecure Pending Intent, UI Spoofing, Insecure File Rights and more.
Delivers a detailed report
- Provides an executive summary, isolates critical issues and offers recommendations for remediation.
- Includes function, class and line information to expedite remediation.
- Delivers ratings for vulnerabilities to support prioritization and developer productivity.
- Formulates an action plan for remediation of vulnerabilities.
- Permits you to rescan your application to verify that issues have been remediated.
IBM Security AppScan Mobile Analyzer resources