pentest-SKILL.md
CommunityIdentify mobile app security risks per MASTG.
System Documentation
What problem does it solve?
Conducts comprehensive mobile application penetration testing for iOS and Android, following the OWASP Mobile Application Security Testing Guide (MASTG) to identify vulnerabilities across data storage, network communication, authentication, cryptography, and platform-specific security controls. The tester performs static analysis of binaries, dynamic runtime analysis, and API security testing to evaluate the complete mobile attack surface.
Core Features & Use Cases
- Static Analysis: Inspect binaries for hardcoded secrets, insecure storage, and misconfigurations.
- Dynamic Testing: Assess runtime behavior and resist tampering using instrumentation and debugging techniques.
- API Security: Validate mobile backend endpoints, access controls, and data exposure during mobile interactions.
- Use Case: Before releasing a new mobile banking app, perform end-to-end pentesting to uncover exploitable weaknesses and verify mitigations.
Quick Start
Run a full OWASP MASTG-compliant mobile pentest on the target iOS/Android app to generate a prioritized findings report.
Dependency Matrix
Required Modules
Components
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: pentest-SKILL.md Download link: https://github.com/DCx7C5/ai-marketplace/archive/main.zip#pentest-skill-md Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.