Mobile developer security roadmap 🔒

Welcome to Mobile Developer Security Roadmap 2023

The main purpose of this roadmap is to help anyone who to get knowledge about security. This contains all topics to help you find what you are looking for quickly. I hope I can help you=

📖 Authors

This was derived from a series created on youtube about security, check it out and subscribe to the channel. The video was made together with:
Me
Gabriel Amorim
João Calvo
Gabriel Monteiro

take a look and subscribe to the channel from the CodandoTV to help this initiative 🎬

✨ Contribution

This repo is open to contributions If you have any questions, suggestions let's have it over Issues
Remembering that this is our point of view and it is up to you to evaluate the best for your scenario

🗺️ Roadmap - You can access the link to the original image of the link by Miro

Contents

• 📦 Safe Storage
  • Cryptography of sharedpreferences
  • Encryption of Data to store 🤖
  • Cryptography of userdefault
  • General Data Encryption for 🍎

• ⛅ Code Obfuscation

  • proguard 🟥
  • dexguard
  • swiftshield 🟥
  • iXGuard

• 🦠 Malware

  • Detection of accessibility services
  • Screen overlay
  • Root user block
  • Lock keyboard 🍎
  • Remote access blocking
  • Layout configuration setFilter 🍎
  • Enable activity parameter to leave white screen 🤖
  • Listen to events and control the screen tree and place the screen on top 🍎

• 🔑 User Authentication

  • Two factor authentication
  • One time password
  • Proof of life

• 🔒 Secure Communication of Data in Transit

  • SSL 🟥
  • Request Signature
  • Request Encryption
  • TLS Pining
  • Two way pining

• 🔎 Code Analysis

  • SwiftLint
  • Detekt
  • Sonar
  • Fortify
  • MobSF
  • Code Review 🟥
  • GuardSquare

• 💻 Realtime Application Self Protect (Rasp)

  • Debug 🟥
  • Debugger
  • jail break 🍎
  • Root🤖
  • App Tamper
  • File Tamper
  • App Cloner
  • Memory Hook
  • Validate the Installation Source

• 🟥 Cards that have a red tag we believe to be mandatory for any case

Git Documentation Contributors

License

Copyright 2023 Rodrigo Vianna

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.