Skip to content

Latest commit

 

History

History
46 lines (32 loc) · 3.19 KB

README.md

File metadata and controls

46 lines (32 loc) · 3.19 KB

OWASP MASVS

This is the official Github Repository of the OWASP Mobile Application Security Verification Standard (MASVS). It started as a fork of ethicalhack3r's Markdown version of the OWASP ASVS 3.0. The MASVS can be used to establish a level of confidence in the security of mobile apps. The MASVS is intended to be used in the following ways:

  • Use as a metric - To provide application developers and application owners with a framework wich allows to measure the security, and thus the degree of trust that can be placed in their mobile applications.
  • Use as guidance - To provide guidance in regards to security controls necessary to implement in order to satisfy application security requirements
  • Use during procurement - Provide a baseline for mobile app security verification requirements.

image

Suggestions and feedback

To report and error or suggest an improvement, please create an issue.

How to Contribute

The MASVS is an open source effort and we welcome contributions and feedback. If you want to contribute additional content, or improve existing content, we suggest that you first contact us on the OWASP MSTG Slack channel:

https://owasp.slack.com/messages/project-mobile_omtg/details/

You can sign up here:

http://owasp.herokuapp.com/

To add or edit content, simply fork the repository and make your changes, then create a pull request when you are finished. We'll review the changes before we merge them with the master branch in the main repo. In case there's conflicting opinions, we'll create an issue for discussing the changes.

Read Individual Sections of the MASVS Here