Mobile App Penetration Testing

Budget: $30 - $250

I need a seasoned cyber-security tester to perform a full penetration test against my production-ready mobile application, which is released on both iOS and Android. This isn’t a surface-level scan. I’m looking for a hands-on, adversarial assessment that mirrors real-world attack techniques.

Scope of work The engagement should cover the entire mobile stack: client apps, API calls, back-end authentication flows, local data storage, transport encryption, and any third-party SDKs we rely on. Please use recognized standards such as OWASP Mobile Top 10 and MASVS to guide the methodology, and feel free to bring in tools like Burp Suite, Frida, MobSF, or custom scripts where appropriate.

Deliverables • Formal report detailing each vulnerability, its risk rating, reproduction steps, and recommended fixes • Executive summary suitable for non-technical stakeholders • Proof-of-concept screenshots, logs, or videos that clearly demonstrate exploitation • Retesting after fixes to verify remediation (one round included)

Acceptance criteria All findings must be reproducible, mapped to a CVSS score or similar, and submitted in an editable document plus PDF. I will consider the project complete once the retest shows all Critical and High issues closed or mitigated.

If you have recent mobile pen-test experience and can begin shortly, let’s talk.