What is MobiHeals?
MobiHeals is a cloud-based mobile application Static Application Security Testing (SAST) tool developed by Cyber Heals. It performs comprehensive security vulnerability analysis for mobile apps to protect them from cyber threats. It allows users to secure their applications with features like source code review, manifest analysis, binary analysis, and more.
How does MobiHeals analyze and detect vulnerabilities in mobile app source code?
MobiHeals systematically analyzes and detects vulnerabilities via both static and dynamic analysis. In the development stage, users upload the source code to the platform where it undergoes detailed analysis and any vulnerabilities and quality issues in the mobile application source code are detected. These are then collected, checked, and presented in the form of clear results.
What global cybersecurity guidelines does MobiHeals comply with?
MobiHeals complies with contemporary global cybersecurity guidelines. Specific guidelines or standards were not listed on their website.
Which type of analysis does MobiHeals offer?
MobiHeals offers both static and dynamic analysis. Static Analysis is used to detect security and quality issues in the source code, including sensitive information leakage, while the Dynamic Analysis performs tests with depth and coverage at runtime to uncover vulnerabilities that may present themselves only when the application is run in its production phase.
What do the vulnerability analysis reports from MobiHeals contain?
Vulnerability analysis reports from MobiHeals include information about hidden flaws, design flaws and specific vulnerabilities in mobile applications. They are designed as actionable reports providing real source code suggestions to quickly rectify the detected vulnerabilities.
How does MobiHeals support continuous security vulnerability management?
MobiHeals helps in continuous security vulnerability management by providing periodic performance and vulnerability updates. It allows users to understand their complete security posture with reconnaissance, pre-exploitation, and post-exploitation runtime analysis.
How does the manual and automated dynamic testing with MobiHeals work?
Manual and automated dynamic testing with MobiHeals involves the upload of the source code followed by the application of various dynamic attacks. These tests help to detect mobile application vulnerabilities at runtime, with the results reported in a comprehensive format.
Does MobiHeals provide real source code suggestions for vulnerabilities detected?
Yes, MobiHeals provides solutions for vulnerabilities in the form of real source code suggestions. This helps to speed up the process of rectification and enhances the overall security of the mobile applications.
What sort of apps has MobiHeals tested and patched for vulnerabilities in the past?
MobiHeals has been engaged in testing and patching for security vulnerabilities for numerous major brands. However, specific names of the apps or brands are not mentioned on their website.
What is included in the 30 days introductory offer by MobiHeals?
The 30 days introductory offer from MobiHeals includes services such as Source Code Review, Manifest Analysis, Binary Analysis, NIAP Analysis, Permission Analysis, File Analysis, CVSS Score Calculator, Sensitive Information Leak Analysis, Android API Visibility, Malware Analysis (ML Based), Browsable Activities and Downloadable Reports.
What is the static analysis offered by MobiHeals?
Static analysis provided by MobiHeals identifies security and quality issues in the source code of the mobile application. It helps in the detection of security vulnerabilities, sensitive information leakage, and manifest analysis among other things. It aims at revealing potential issues that can be addressed in just 1~3 steps.
Can I upload the mobile application source code for analysis on MobiHeals?
Yes, users can upload the mobile application source code for analysis on MobiHeals. The platform provides a convenient method for uploading source code where it is then analyzed
How does the dynamic analysis offered by MobiHeals detect vulnerabilities in mobile apps?
Dynamic analysis introduced by MobiHeals effectively detects vulnerabilities in mobile applications by performing both automated and manual penetration testing at the runtime of the app. This approach tests the application with depth and coverage as it executes in its environment, forming a comprehensive part of the application's security testing.
What do the actionable reports from MobiHeals reveal about the mobile applications?
The actionable reports from MobiHeals reveal hidden flaws like design flaws and specific vulnerabilities in mobile applications whenever they run in the production phase. These reports are designed to be easily comprehensible, providing direct actions to quickly remediate any discovered vulnerabilities.
How does MobiHeals help in the development, testing and operation stages of app security?
MobiHeals assists the development, testing, and operation stages of app security by detecting security vulnerabilities and quality issues in the mobile application source code during the development stage. During the testing stage, mobile application vulnerabilities are identified through manual and automated dynamic attacks - and finally in the operation stage, responses to the latest government guidelines and security vulnerabilities are managed.
How does MobiHeals help with sensitive information leakage and manifest analysis?
MobiHeals helps with sensitive information leakage and manifest analysis through its static analysis process. It checks the source code for any potential leaks of sensitive information and examines the manifest, which provides essential information about the application to the Android system.
What kind of support does MobiHeals provide for mobile app vulnerability management?
MobiHeals provides detailed and continuous support for mobile app vulnerability management by offering comprehensive security vulnerability analysis, automated and manual dynamic testing, actionable reports uncovering hidden flaws and specific vulnerabilities, and suggestions for quick fixes of the detected vulnerabilities.
Does MobiHeals provide any tools for malware analysis?
Yes, MobiHeals offers malware analysis based on Machine Learning. This allows for the detection and aim to elimination of potential malware threats in mobile applications.
How are the analyses by MobiHeals periodic performance and vulnerability updates helpful?
The periodic performance and vulnerability updates by MobiHeals are helpful as they keep the users informed about their app security status and provide an understanding of their complete security posture, including any potential threats and the appropriate actions to undertake.
Does MobiHeals offer any free trials for testing its features?
Yes, MobiHeals offers a free trial for 30 days. This allows users to explore and experience its comprehensive security analysis and vulnerability check features without any initial cost.