where to start pentesting my app? – Digitalmunition

Home Forums where to start pentesting my app?

This topic contains 1 reply, has 2 voices, and was last updated by  Jacob—- 8 months ago.

  • Author
  • #227385


    I’m currently developing an app in my spare time, and I’d like to test for potential security vulnerabilities in my code. I am by no means a master hacker nor a competent programmer, so where can I start testing flaws in my code, or should I just pay someone else to do it for me?

  • #227386


    You could set a bug bounty on a site like HackerOne if it is a live web app.

  • #227387


    I suggest watching people do it. You get a feel for it and will probably be able to replicate. Some general weak points generally are:
    -file uploads
    -login pages (sql vulnerabilities)
    -Third party frameworks with vulnerabilities

    Oh whoops I thought it was a web app. Make sure your app doesn’t execute user input in ANY WAY.

You must be logged in to reply to this topic.