Skip to content
Documentation
Switch Organisation
Initializing search
Login
Demo
Home
Getting Started
Copilot
Scanning
Attack Surface
Policies & Remediation
Integrations & API
Organisation
Plans
Security & Privacy
FAQ
Documentation
Home
Getting Started
Getting Started
Getting Started
Dashboard
Dashboard
Overview
Scans & Risk
Remediation
Inventory & Attack Surface
Remediation Calendar
Copilot
Copilot
Copilot
Copilot Examples
Copilot FAQ
Scanning
Scanning
Scan Profiles
Scan Profiles
Mobile Scan Profiles
Web Scan Profiles
Network Scan Profile
Autodiscovery Scan Profile
Run a scan
Run a scan
Scan a Mobile Application from the Store
Scan a Mobile Application from a File
Scan an iOS Mobile Application using TestFlight
Whitelist domains in mobile scans
Scan a Web Application
Authenticated Web Application Scan
Authenticated Scans
Scans with SBOM or Lockfile
Scan Networks
Scan Assets from the inventory
Scan with custom config
Scan Web App with Chrome's Recorder Puppeteer Script
Scan with extra custom Agents
How to add a new agent with a private repository
Scan with UI Prompts
Manage Scans
Manage Scans
Stop Scan
Archive Scan
Report
Report
Generate PDF report
Risk Rating
Change Risk Rating
Analysis
Analysis
IDE
Check Call Coverage
Monitoring
Monitoring
Monitoring
Create Monitoring Rule
Whitelist domains in mobile application monitoring rules
On-prem Scanners
On-prem Scanners
Run a scan
Attack Surface
Attack Surface
Discovery
AI Agent Attack Surface Discovery
Data
Monitoring
Search and Navigation
Inventory
Inventory
Add Assets
Discover Assets
Edit Potential Owners
Bulk Import Assets
Edit Assets
Delete Asset
Filter by Asset
Exclude Asset
Advanced Search syntax
Graph
Graph
Share a Graph
Location
Location
Add Location
Owners
Owners
Add Owner
Policies & Remediation
Policies & Remediation
Remediation
Remediation
Ticketing
Ticketing
Guide
Create Ticket
Comment on Ticket
Add a Checklist to a Ticket
Configure Patching Policy
Vulnerabilities and Tickets Management
Identify the Location of a Vulnerability from a ticket
Ticket Aggregation
Ticket Aggregation
How it works?
Configure Aggregation based on the platforms
Configure Aggregation based on the applications IDs
Views
Views
Timeline
Policies
Policies
Automation Rules
Integrations & API
Integrations & API
Integrations
Integrations
CI/CD
CI/CD
GitHub
GitLab
Jenkins
Azure DevOps
App Center
CircleCI
Bitbucket
GoCD
TeamCity
Slack
Vanta
Ticketing
Ticketing
Jira
SSO
SSO
Guide
Saml with Azure Active Directory
Saml with Google Workspace (formerly G Suite)
Saml with Okta
Saml with OneLogin
API
API
GraphQl API
Organisation
Organisation
Setup
Setup
Create Organisation
Users
Users
User Roles
Add Users
Switch Organisation
Modify User Permissions
Disable email notifications
Settings
Settings
Add Two-factor authentication device to your account
Access
Access
Manage Access and Attack Surface Auditor Owners
Plans
Plans
Add Plan
Transfer plans
Security & Privacy
Security & Privacy
Security
Security
Mobile App Security Testing
Streamlining Mobile App Security in the SDLC with Ostorlab
Detection
Platform Support
Security at Ostorlab
Vulnerability Disclosure
Network IPs for Scanning and Integrations
Privacy
Privacy
Privacy Policy Analysis
Knowledge Base
Knowledge Base
Insecure whitelist configuration
Cordova debug mode enabled
Source Map Code Leak
Cordova Cross-Site Scripting (XSS)
Insecure whitelist
ELF binaries do not enforce secure binary properties
Debug mode enabled
Facebook React development settings exposed
Insecure Network Configuration Settings
Attribute hasFragileUserData not set
Application code not obfuscated
Unused permissions (overprivileged)
Debug Symbols Present in the Android Application
Deprecated Target API Version
Android Sensitive data stored in keyboard cache
Attribute usesCleartextTraffic set
Attribute requestLegacyExternalStorage set
Undeclared Permissions
Task Hijacking
Intent Spoofing
Implementation of a FileObserver
Implementation of a WebViewClient
Broadcast receiver dynamic registration
Recorded calls to Serialization API
Call to logging API
Classes list
APK files list
Call to Android Security API
Expansion APK enabled
Call to command execution API
Application certificate information
Recorded calls to Process API
Recorded calls to command execution API
Recorded calls to logging API
Call to Socket API
Call to TLS API
Obfuscated methods
List of JNI methods
APK attack surface
Recorded calls to dynamic code loading API
Call to XML parsing API
Recorded calls to SQLite query API
Call to Crypto API
Recorded calls to dangerous WebView settings API
Recorded calls to TLS API
Call to native methods
Hardcoded strings list
Call to Reflection API
Call to delete file API
Android Manifest
Call to dangerous WebView settings API
Hardcoded SQL queries list
Call to Bluetooth and BLE API
Recorded calls to HTTP API
Call to Inter-Process-Communication (IPC) API
Recorded calls to FileSystem API
Call to ZIP API
Call to External Storage API
Declared permissions list
Recorded calls to Shared Preferences API
Recorded calls to Inter-Process-Communication (IPC) API
Recorded calls to Crypto API
Hardcoded urls list
Call to SQLite query API
Recorded calls to Intent API
Call to Random API
Recorded calls to Hash API
Recorded calls to TLS Pinning API
Call to dynamic code loading API
Android Package Context created without security restrictions
Remote Command Execution
Notification Spoofing
Exported activities, services and broadcast receivers list
Application prevents taking screenshots
Debug mode disabled
Backup mode disabled
Secure Network Configuration Settings
Application checks rooted device
Source to Sink
Backup mode enabled
Services declared without permissions
Redis Library detected
Insecure Shared Preferences Permissions
Intent Redirection
Webview Remote Debugging Enabled
Facebook SDK debug mode enabled
Android Class Loading Hijacking
Use of an insecure Bluetooth connection
Abuse of mobile network connection
Webview loadurl injection
Application signed with an expired certificate
addJavaScriptInterface Remote Code Execution.
Insecure Register Receiver Flag
Android Class Load Hijacking
File Path Traversal
Insecure File Provider Paths Setting
Implicit PendingIntent
Malformed ATS Configuration
Address Space Layout Randomization (ASLR) not enforced
Automatic Reference Counting (ARC) not enforced
Stack smashing protection not enforced
Insecure Keychain Storage
iOS Sensitive data stored in keyboard cache
Debug Symbols Present in the IOS Application
iTunes UI File Sharing Enabled
IPA symbol table
URL Scheme list
IPA files list
IPA Plist files
Strings Bplist files
IPA Frameworks list
Mach-O entitlements
iOS URL Scheme Injection
Unclaimed Cocoapods Vulnerability
Mach-O encrypted
IPA contains only bitcode
No sensitive data stored outside App
Application implements anti-debug techniques
Privacy manifest files
Insecure App Transport Security (ATS) Settings
Missing privacy manifest file
iOS URL Scheme Hijacking
Use of Deprecated Component
Memory Leak
Use of Outdated Vulnerable Component
Process crashes
Insecure Random Seed
Cryptographic Vulnerability: Insecure Algorithm
Use non-random initialization vector (IV)
Regular expression denial of service
Cryptographic Vulnerability: Insecure mode
Calls to Privacy API
List of calls to dangerous low-level C functions
XPath Injection Vulnerability
Insecure JWT Signature Validation
Format String Vulnerability
VirusTotal scan flagged malicious asset(s) (MD5 based search)
Template Injection
Mobile WiFi API Personal Identifiable Information concerns
Biometric Authentication Without Cryptographic Binding
Tapjacking Vulnerability
Domain name and IP address reputation report
Dependency Confusion
Obfuscated Flutter code
Secure In-App Search History Collection in Privacy Policy
Opt-out Information Present in Privacy Policy
Declaration of Approximate Location Collection in Privacy Policy
Privacy Policy Disclosure for Fitness Info Collection is Present
Phone Number Data Type Declaration Match
Text Messages Data Type Declaration Match
Declaration of Voice or Sound Recording Collection in Privacy Policy
Declaration of Precise Location Collection in Privacy Policy
Contacts Data Type Declaration Match
Declaration of Contact Collection in Privacy Policy
Declaration of User Files Collection in Privacy Policy
Device ID Data Type Declaration Match
Health and Biometric Data Type Declaration Match
Declaration of Email Address Collection in Privacy Policy
Privacy Policy Disclosure for Calendar Events Collection is Present
Privacy Policy Link is Present
Declaration of Email Collection in Privacy Policy
Privacy Policy CCPA Rights Reference are Present
Secure Collection of Users' Text Messages in Privacy Policy
Declaration of Web Browsing History Collection in Privacy Policy
Declaration of Photo Collection in Privacy Policy
Sensitive Information Data Type Declaration is Present
Declaration of Installed Apps Collection in Privacy Policy
Privacy Policy Personal Data Categories Disclosure match
Legal Basis Present in Privacy Policy
GDPR Rights Reference Present in Privacy Policy
Mention of Users' Right to Know in Privacy Policy
Secure Collection of Users' Purchase History in Privacy Policy
Third-Party Sharing Information in Privacy Policy is Present
Mention of User Data Access in Privacy Policy
Declaration of Device or Other IDs Collection in Privacy Policy
Secure domain name and IP address reputation report
PII Data Type Declaration Match
Mention of User Data Correction Rights in Privacy Policy
PII Categories Data Type Declaration Match
Declaration of Phone Number Collection in Privacy Policy
Proper Privacy Policy Data Retention Description
Precise Location Data Type Declaration Match
Declaration of Health Info Collection in Privacy Policy
Declaration of Video Collection in Privacy Policy
Mention of User Data Deletion in Privacy Policy
Contact Information Present in Privacy Policy
Secure Collection of Users' Crash Logs without Consent
Secure Virustotal malware analysis (MD5 based search)
User Account Info Data Type Declaration Match
Secure User ID Collection in Privacy Policy
Continuous collection of GPS location
Secret information stored in the application
Port open on device
URL Manipulation
Sensitive Information Data Type Declaration missing
Credentials exposed in logs
Phone Number Data Type Declaration Mismatch
Missing Third-Party Sharing Information in Privacy Policy
Missing Declaration of Web Browsing History Collection in Privacy Policy
Missing Declaration of Installed Apps Collection in Privacy Policy
Missing Opt-out Information in Privacy Policy
PII Data Type Declaration Mismatch
Missing Mention of Users' Right to Know in Privacy Policy
Insecure Storage of Application Data
Cryptographic Vulnerability: Hardcoded Key
Mobile SQL Injection Vulnerability
ZIP Vulnerabilities: Path Traversal, Zip Symbolic Link, and Zip Extension Spoofing
Cryptographic Vulnerability: Weak Hashing Algorithm
Missing Declaration of Video Collection in Privacy Policy
Contacts Data Type Declaration Mismatch
Missing GDPR Rights Reference in Privacy Policy
HTML Injection Vulnerability
Collection of Users' Crash Logs without Consent
Missing Declaration of Voice or Sound Recording Collection in Privacy Policy
Privacy Policy Data Retention Description
Missing Declaration of Photo Collection in Privacy Policy
Missing Privacy Policy Disclosure for Calendar Events Collection
Missing Declaration of User Files Collection in Privacy Policy
Health and Biometric Data Type Declaration Mismatch
Privacy Policy Personal Data Categories Disclosure mismatch
Missing Declaration of Precise Location Collection in Privacy Policy
Insecure password storage
Missing Mention of User Data Correction Rights in Privacy Policy
Collection of Users' Purchase History in Privacy Policy
Missing Declaration of Approximate Location Collection in Privacy Policy
Biometric Authentication Bypass
XML Injection
Collection of Users' Text Messages in Privacy Policy
Personally Identifiable Information (PII) Leakage
Privacy Policy CCPA Rights Reference missing
Missing Declaration of Health Info Collection in Privacy Policy
Missing Declaration of Device or Other IDs Collection in Privacy Policy
Contact Information missing in Privacy Policy
Missing Privacy Policy Link
Precise Location Data Type Declaration Mismatch
Insecure Filesystem Access
Missing Mention of User Data Deletion in Privacy Policy
User Account Info Data Type Declaration Mismatch
Insecure hostname validation check
Insecure Dynamic Library Loading
Missing Privacy Policy Disclosure for Fitness Info Collection
Device ID Data Type Declaration Mismatch
User ID Collection in Privacy Policy
Missing Declaration of Phone Number Collection in Privacy Policy
Credentials exposed in URLs
Missing Mention of User Data Access in Privacy Policy
In-App Search History Collection in Privacy Policy
OAuth Account Takeover by hijacking custom schemes
PII Categories Data Type Declaration Mismatch
Missing Declaration of Contact Collection in Privacy Policy
Text Messages Data Type Declaration Mismatch
Missing Declaration of Email Address Collection in Privacy Policy
Missing Declaration of Email Collection in Privacy Policy
Missing Legal Basis in Privacy Policy
DNS High TTL Values
DNS Check: SPF, DKIM, DMARC, and BIMI Validation
External DNS interaction
Missing or misconfigured DNSSEC
DNS MX Record Misconfiguration
Subdomain Takeover
DNS Vulnerability: Dangling Domain Records
DNS Information Disclosure
Unrestricted DNS Zone Transfers
MTA-STS Misconfiguration
DNS Vulnerability: Malicious Content in TXT Records
Network Port Scan
Cookie missing security attributes
Insecure HTTP Header Setting: X-Frame-Options
Insecure HTTP Header Setting: Insecure Referrer Policy
Insecure HTTP Header Setting: HTTP Strict Transport Security (HSTS)
Insecure HTTP Header Setting: X-XSS-Protection Header
Insecure HTTP Header Setting: Content Security Policy (CSP)
Strict-Transport-Security (HSTS) not enforced
Insecure HTTP Header Setting: Content-Type
HTTP Method Manipulation in GraphQL
Username enumeration
Brute Force Login Using Alias Batching in GraphQL API
GraphQL Tracing Enabled
Django Debug Mode Enabled
Insecure HTTP Header Setting
TLS/SSL Server Configuration Settings
Generic Web Entry
Interesting response
GraphQL Schema Traversal Paths
Insecure TLS certificate validation (accept self-signed certificate)
Insecure Direct Object Reference
Path Traversal
Insecure Authorization Restriction
CRLF Injection
Publicly exposed Firebase Database
LDAP Injection
Heartbleed (CVE-2014-0160)
Web XML Injection
Cross-Site Scripting (XSS)
Insecure Object Serialization
Server Side Inclusion
XML External Entity (XXE) Injection
Server-side template injection (SSTI)
Expression Language (EL) Injection
NoSQL Injection
Command Injection
Unrestricted file upload
Code Injection
SQL injection
XPath Injection
File inclusion vulnerability
Account Takeover Vulnerability
Secure TLS certificate validation
Secure HTTP Header Setting: Secure Referrer Policy
Secure Cross-Origin Resource Sharing (CORS) Policy
Assign a unique name and/or number for identifying and tracking user identity
Secure HTTP Strict Transport Security (HSTS) Implementation
Secure Cookie Implementation
Enforcer proper authentication
Secure HTTP Header Settings
Secure Content Security Policy
Secret information transmitted over the network
GraphQL Authorization Misconfiguration
Insecure TLS Ciphers supported
Use of deprecated TLS/SSL protocol version
GraphQL Circular References
Object Limit Overriding in GraphQL
Alias Overloading in GraphQL API
CORS Misconfiguration Vulnerability
Insecure TLS Certificate Validation
Insecure Cross-Origin Resource Sharing (CORS) policy
Anonymous unauthenticated server accepted
HTTP Host Header Poisoning
Insecure Access Control
Clear text HTTP request
Array-Based Batch Queries
Field Duplication in GraphQL API
Directive Overloading in GraphQL API
Insecure TLS certificate domain name validation
GraphQL Debug Mode Enabled
Circular Fragment in GraphQL
Secure Firebase Database Permissions
Public AWS S3 bucket with file listing enabled
TLS_FALLBACK_SCSV Not Supported
Raccoon Attack on SSL/TLS
Weak Cipher Suites Supported
Weak Message Authentication Code (MAC) Algorithms Supported
SSL/TLS Certificates Expiring Soon
Bleichenbacher Attack on RSA Encryption
SSL Extension Bleed Vulnerability
CERTIFICATE_EXPIRED
Outdated SSL/TLS Protocols Supported
Backdoored Cryptographic Algorithms in SSL
ALPACA Attack in SSL/TLS
Weak Cryptographic Key and Signature Algorithm in SSL/TLS Certificate
Forward Secrecy Not Implemented
SSL/TLS Certificate Hostname Mismatch
Lucky Thirteen Vulnerability in SSL/TLS
FAQ
Switch Organisation
Users can easily switch active organisation from the upper menu:
