> For the complete documentation index, see [llms.txt](https://unk9vvn.gitbook.io/penetration-testing/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://unk9vvn.gitbook.io/penetration-testing/mobile.md).

# Mobile

- [Mobile App Taxonomy](https://unk9vvn.gitbook.io/penetration-testing/mobile/mobile-app-taxonomy.md)
- [Native App](https://unk9vvn.gitbook.io/penetration-testing/mobile/mobile-app-taxonomy/native-app.md)
- [Web App](https://unk9vvn.gitbook.io/penetration-testing/mobile/mobile-app-taxonomy/web-app.md)
- [Hybrid App](https://unk9vvn.gitbook.io/penetration-testing/mobile/mobile-app-taxonomy/hybrid-app.md)
- [Progressive Web App](https://unk9vvn.gitbook.io/penetration-testing/mobile/mobile-app-taxonomy/progressive-web-app.md)
- [Mobile App Security Testing](https://unk9vvn.gitbook.io/penetration-testing/mobile/mobile-app-security-testing.md)
- [Principles of Testing](https://unk9vvn.gitbook.io/penetration-testing/mobile/mobile-app-security-testing/principles-of-testing.md)
- [Security Testing and the SDLC](https://unk9vvn.gitbook.io/penetration-testing/mobile/mobile-app-security-testing/security-testing-and-the-sdlc.md)
- [General](https://unk9vvn.gitbook.io/penetration-testing/mobile/general.md)
- [Mobile App Authentication Architectures](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures.md)
- [General Guidelines on Testing Authentication](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures/general-guidelines-on-testing-authentication.md)
- [Verifying that Appropriate Authentication is in Place](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures/verifying-that-appropriate-authentication-is-in-place.md)
- [Best Practices for Passwords](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures/best-practices-for-passwords.md)
- [Stateful Session Management](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures/stateful-session-management.md)
- [Session Timeout](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures/session-timeout.md)
- [User Logout](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures/user-logout.md)
- [Two-Factor Authentication](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures/two-factor-authentication.md)
- [Stateless (Token-Based) Authentication](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures/stateless-token-based-authentication.md)
- [OAuth 2.0 Flows](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures/oauth-2.0-flows.md)
- [Login Activity and Device Blocking](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/mobile-app-authentication-architectures/login-activity-and-device-blocking.md)
- [Testing Network Communication](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/testing-network-communication.md)
- [Intercepting HTTP(S) Traffic](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/testing-network-communication/intercepting-http-s-traffic.md)
- [Burp plugins to Process Non-HTTP Traffic](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/testing-network-communication/burp-plugins-to-process-non-http-traffic.md)
- [Intercepting Traffic on the Network Layer](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/testing-network-communication/intercepting-traffic-on-the-network-layer.md)
- [Verifying Data Encryption on the Network](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/testing-network-communication/verifying-data-encryption-on-the-network.md)
- [Use Secure Communication Channels](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/testing-network-communication/use-secure-communication-channels.md)
- [Cryptography in Mobile Apps](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/cryptography-in-mobile-apps.md)
- [Key Concepts](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/cryptography-in-mobile-apps/key-concepts.md)
- [Identifying Insecure Cryptographic Algorithms](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/cryptography-in-mobile-apps/identifying-insecure-cryptographic-algorithms.md)
- [Common Configuration Issues](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/cryptography-in-mobile-apps/common-configuration-issues.md)
- [Cryptographic APIs on Android and iOS](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/cryptography-in-mobile-apps/cryptographic-apis-on-android-and-ios.md)
- [Cryptographic Policy](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/cryptography-in-mobile-apps/cryptographic-policy.md)
- [Testing Code Quality](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/testing-code-quality.md)
- [Injection Flaws](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/testing-code-quality/injection-flaws.md)
- [Cross-Site Scripting Flaws](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/testing-code-quality/cross-site-scripting-flaws.md)
- [Memory Corruption Bugs](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/testing-code-quality/memory-corruption-bugs.md)
- [Tampering and Reverse Engineering](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/tampering-and-reverse-engineering.md)
- [Reverse Engineering](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/tampering-and-reverse-engineering/reverse-engineering.md)
- [Static Analysis](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/tampering-and-reverse-engineering/static-analysis.md)
- [Dynamic Analysis](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/tampering-and-reverse-engineering/dynamic-analysis.md)
- [Tampering and Runtime Instrumentation](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/tampering-and-reverse-engineering/tampering-and-runtime-instrumentation.md)
- [Customizing Android for Reverse Engineering](https://unk9vvn.gitbook.io/penetration-testing/mobile/general/tampering-and-reverse-engineering/customizing-android-for-reverse-engineering.md)
- [Android](https://unk9vvn.gitbook.io/penetration-testing/mobile/android.md)
- [iOS](https://unk9vvn.gitbook.io/penetration-testing/mobile/ios.md)


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://unk9vvn.gitbook.io/penetration-testing/mobile.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.