Varutra, headquartered in (Pune) India, is a pure play Information Security Consulting; Research and Training services firm, providing specialized security services for software, mobile and network. Varutra is a CERT-In empanelled qualified IT Security Auditor organization having clientele from India and overseas.
We are motivated to provide our customers with specially tailored services providing protection against internal as well as external threats and reduce business risk to improve security posture, achieve regulatory compliance and increase efficiency.
Our team comprises young, enthusiastic brilliant minds with experienced consultants contributing to the research and development at Varutra.
Our goal is to provide security in totality, which ensures that every possible facet of an information threat is covered during our engagement. We constantly strive to outdo ourselves for the best possible solution.
MASTS (Mobile Application Security Testing Suite) is a patents filed product developed at Varutra from it’s extensive research and experience gain into Mobility and Applications Security.
The idea of MASTS was engineered with an aim to create an easy to use and intelligent automated solution, which simulates manual security testing as closely as possible. It reduces manual efforts, false positives and ensures effective testing results with minimal timelines.
MASTS allows to test the target mobile application with real world testing approaches such as Black Box, Gray Box.
MASTS is capable of identifying vulnerabilities by performing Static and Dynamic analysis of mobile applications. It conducts testing of applications by applying its test cases derived from OWASP Top 10 for mobile as well as custom test cases, which cannot be detected by a normal scanner.
MASTS facilitates the mobile application security testing by providing various other utilities a pentester can use during the testing/audit.
MASTS supports application platforms such as Native Mobile Application, Application-using SOAP/REST based Web Services, Mobile Browser Based as well as Hybrid Applications.
Target mobile application will be tested for static code (APK level) security issues. User need not to authenticate with the target mobile application for scanning.
Logcat captures device logs of the target mobile device and allows pentester to download it in plain text on local machine for further analysis.
Exporting reports of the scan results, including completed scans and failed scans. Reports can be exported in PDF and HTML formats.
Target mobile application will be tested for vulnerabilities without logging into the application.
SAND utility provides taking a Snapshot of the target device, provide details such as number of application installed, permissions on those application, files and databases created by the application, etc.
SAND Comparator provides the facility to compare any two Snapshots of the target devices to display details on any modifications done before and after installing the application or before and after login into the application, etc.
Target mobile application will be tested for vulnerabilities by autheticating into the application. User must enter the valid credentials before MASTS conducts the testing.
A TCP Sniffer acts like a proxy on the connection/communication in the network. TCP Sniffer captures the TCP traffic going from the target mobile application and coming from the server and analyze it.
It extracts the source code of the application APK and analyze it for any known security issues under static testing. Also facilitates pentester in verifying reverse engineered code to check for possible modification and tampering.
Welcome to MASTS Knowledge Base section. You will find here the most recently updated articles from MASTS team.
MASTS Trial Edition Walkthrough
MASTS Professional Edition Walkthrough
File Name: | MASTS APK (5 MB) |
MD5: | A2085E3443CCD6856E61CEBB65F5CF2B |
SHA1: | 3FA45FDB66FB5C547A466C2A7461182F0B8F0D06 |
Welcome to MASTS download section. You can grab a Trial edition of MASTS and try it for a limited period of time. To buy MASTS, please contact our support team at masts[at]varutra[dot]com
Download MASTS MASTS Agent APKFile Name: | MASTS_Trial_Edition_Setup.exe |
MD5: | D63C0D3FB9AD39B94F6C9F7F51970836 |
SHA1: | 7613145A4B050F9E09DDE3C7520B82949E8E0B14 |
MASTS Trial Edition comes with limited vulnerabilities test cases, features of SAND and few utilities of the product. Trial edition is restricted to 5 scans only.
MASTS Professional Edition comes with full vulnerabilities test cases, features of SAND and all utilities of the product. Professional edition offers unlimited scans. To know more about the licensing (per user/per machine/multiple machines) please contact MASTS support.
Thank you for your interest in MASTS services. Please provide the following information about your business needs to help us serve you better. This information will enable us to route your request to the respective team. You should receive a response within 48 hours.