top of page
Search
Mobile App Pentesting with DIVA: Manual, Drozer & MobSF
Most people install apps in seconds but rarely question what comes along with them. We’ve already covered OWASP mobile vulnerabilities in Part 1 and Part 2. Now it’s time to move beyond theory and actually test a vulnerable app DIVA. Today we’ll explore mobile application security using three approaches: manual testing (your logic in action), Drozer (guided exploitation), and MobSF (automated analysis). Each method gives a different perspective. By the end, you won’t just und
Aastha Thakker
9 min read
Setting Up Burp Suite with Android & Analyzing the Traffic - Part 1
The moment you open a mobile app, it starts communicating quietly, continuously, and often invisibly. Login credentials, session tokens, API calls, device identifiers: everything flows back and forth between your phone and remote servers. What you see on screen is just the surface. The real behavior lives in the network traffic. If you work in cybersecurity, you have likely used Burp Suite to intercept browser traffic. But mobile applications are a different beast. They use c
Aastha Thakker
6 min read
bottom of page