Pre-requisites for Mobile App VAPT (iOS & Android)

To ensure a successful Mobile Application VAPT, please prepare the following items before the assessment begins:

Mandatory:

Testing Environment

• Ensure the APK (Android) and IPA (iOS) builds point to a staging server.

Uploading the App

• App size ≤ 300 MB: Upload via the dashboard.

• App size > 300 MB: Share a file download link (Google Drive, Dropbox, OneDrive, WeTransfer, etc.).

User Roles & Credentials

• Provide login credentials for all relevant user roles (admin, user, etc.).

Security Adjustments

• If applicable, disable the following in your test builds:

  • Root/jailbreak detection

  • SSL pinning

These modifications help avoid testing interruptions.

Optional (but helpful):

API Support

• Provide a Postman collection of all API calls the app makes.

  • This improves efficiency and coverage during testing.