about-banner
service-detail-banner

Fully Automated Mobile Application Security

Quickly identify vulnerabilities and mitigate risks, keeping your business and client’s data secure

YOUR DATA AND ASSETS ARE AT RISK

Mobile development teams are under tremendous amount of stress. This can result in applications being released with security flaws and vulnerabilities that can have an enormous impact on both the company and the consumers of the application. Identifying these vulnerabilities can be time consuming and expensive.

dark-counter

THE MOST COMPREHENSIVE MOBILE SECURITY ANALYSIS TOOL

Seecra AppScanner performs fully automated application analysis of Android & iOS apps in order to detect vulnerabilities to hacking, data leaks, malicious code and other weaknesses

Multiple analysis techniques

multiple
Static code analysis
  • Coding problems (e.g. SQL injections, deprecated API usage)
  • Encryption related issues (SSL/TLS problems)
  • Capability & data leaks
  • Anti-debugging techniques
DYNAMIC, BEHAVIOR-BASED ANALYSIS
  • Unmodified & instrumented testing
  • Network communication
  • File access

Comprehensive results

multiple
Disassembling & analyzing obfuscated apps
  • Using advanced code decompilation technologies
DRILL-DOWNS INTO DETECTED ISSUES
  • Locating roots of problems in source for further analytics

Interested in learning more?

GET IN TOUCH! go
service-detail-banner

Mobile App Analysis has never been so easy

Fully automated, Quick & Efficient

SUBMITTING AN APP FOR ANALYSIS WITH A SINGLE CLICK

multiple
  • You just need to select your application, Android or iOS, and submit it – all your job is done.
  • API-submission and batch processing are also available

DETAILS IN THE RESULTS LIST

multiple
  • Select any of the results to open the details page

COMPREHENSIVE LIST OF APP ISSUES

multiple
  • Every detail is just one click away – export, downloads available

DIGGING DEEP INTO ISSUES

multiple
  • Click on any item to view details – further drill-downs available

VIEW ADVANCED DETAILS OF COMMUNICATION

multiple
  • Where, what, how was transmitted – see data leaks

GENERAL INFO, DOWNLOADS

multiple
  • Access technical details

QUEUE APP SCANS

multiple
  • Queue up as many scans as you’d like, parallel app scan execution will bring you the results as soon as possible

ADMINISTRATION

multiple
  • View and change settings, view your organization, track your users & more

WOULD YOU LIKE TO TRY?

Interested in learning more?

GET IN TOUCH! go
service-detail-banner

Seecra MOBILE SECURITY – OVERVIEW

Seecra AppScanner is a powerful security analysis tool designed to automatically scan applications to detect vulnerability to hacking, data leaks, malicious code, and other weaknesses. Both internally developed and external applications (used in BYOD) can be analyzed, allowing organizations to protect their employees and IT assets from external threats.

Seecra AppScaner fast and accurate scans enable organizations to analyze every new version of all applications that they distribute to their customers. Modules developed by subcontractors and 3rd party libraries can also be scanned to detect any potential security issues that could affect their customers. By scanning all new revisions, Seecra AppScanner lets you identify possible regressions on time, which also saves development costs and resources.

Its fully automated scan process means that Seecra AppScanner can be used to aid the application vetting of internal and public app stores. It provides a comprehensive yet simple overview of all scanned applications that could be used to integrate with existing solutions. It does not require any deep and costly expertise to conduct scans and interpret their results.

  • erp1
    Analyze Any App

    All kinds of apps can be analyzed, the source code is not required

  • erp1
    Fast And Accurate Results

    Multiple in-depth analysis of the latest mobile security vulnerabilities

  • erp1
    Easy To Use, Easy to Scale

    No deep expertise required, Seecra AppScanner can be scaled up to x000 scans/year

  • erp1
    Cloud & On-Premises Supported

    Seecra AppScanner is available via cloud or can be installed on your premise

HOW IT WORKS

Seecra AppScaner combines bleeding-edge static and dynamic analysis techniques developed by World leading research. It operates on Android bytecode and does not require the source code of an application. Users can choose whether they want to manually interact with the application in the test environment or whether the analysis should run fully automatically and unassisted.

meta analysis

1. Meta Analysis

In a first preparatory step, an app’s meta data is assessed, revealing information about the application’s permissions, components, and structure. Information gathered in this step sets the scope for the following static analysis.

state analysis

2. Static Analysis

Static analysis investigates the bytecode and structure of an application withouth executing it. Seecra AppScanner features a highly efficient bidirectional data flow tracing, revealing unwanted data flows which can impose violations of security and privacy requirements. Threats to data integrity and secrecy such as SQL injections or unprotected Intents will be identified in this step.

plain analysis

3. Plain Dynamic Analysis

Static analysis investigates the bytecode and structure of an application withouth executing it. Seecra AppScanner features a highly efficient bidirectional data flow tracing, revealing unwanted data flows which can impose violations of security and privacy requirements. Threats to data integrity and secrecy such as SQL injections or unprotected Intents will be identified in this step.

instrumation

4. Instrumentations

Instrumentation makes slight modification to the app in order to extract specific information from it in a hybrid static/dynamic analysis. Guided by potential findings from the static analysis step, specific versions of the app are crafted which automatically jump to relevant parts and provide meaningful information when executed.

hybrid analysis

5. Hybrid Analysis

Guided by knowledge gained from static analysis and modifications injected by instrumentation, World leading hybrid analysis engine investigates the app’s runtime behavior under specific security-relevant conditions and ensures that critical parts of the app are executed and observed. Tracing of individual function calls and register values allow deep insights into the app’s behavior. The hybrid engine attempts to provoke execution of vulnerable code fragments and records encrypted traffic in plaintext, allowing inspection for private information.

instrumation

6. Reporting

Seecra AppScaner presents its most relevant findings in a clearly structured overview. A drill-down into detailed analysis results and raw data of the analysis is possible. All analysis results are stored in Seecra AppScanner and can be retrieved at a later time. In addition, a signed report document can be downloaded.

Overview

multiple
Fully automated scans
  • No manual interaction is required
Comprehensive reports
  • Executive overview
  • Encryption related issues (SSL/TLS problems)
API for integration
  • Automatic and batch mode processing

Multiple different analysis techniques

multiple
Static code analysiss
  • Coding problems (e.g. SQL injections, deprecated API usage)
  • Encryption related issues (SSL/TLS problems)
  • Capability & data leaks
  • Anti-debugging techniques
Dynamic, behavior-based analysis
  • Unmodified & instrumented testing in emulator
  • Network communication
  • File access

Comprehensive results

multiple
Disassembling & analyzing obfuscated apps
  • Code decompile (SMALI)
DRILL-DOWNS INTO DETECTED ISSUES
  • Highlight SMALI source for further analytics

Interested in learning more?

GET IN TOUCH! go

contact us

contact
Today
to Get Your Free
Consulting Advice
ORDER NOW FREE

World Class Technology
COMBINED WITH EXCEPTIONAL SERVICES