Platform for Experts 
Mobile & Backend Security Testing 
Our Company 
Contact us
Our Solutions

esChecker: Mobile Application Security Testing Tool

esChecker combines many years of penetration testing experience with a unique dynamic engine simulating attack techniques, such as reverse-engineering or code tampering. No source code is needed, only the app binary (Android apk or iOS ipa). esChecker provides immediate feedback about the way your app reacts against many hacking techniques. You can now spare your pentest budget for in-depth vulnerability analyses.
Try it now
Download our Brochure
Security Policy - esChecker MAST

What is a Mobile Application Security Testing (MAST)?

Mobile Application Security Testing implement security verifications, ideally at the binary level (blackbox approach).

Behind security, it is necessary to set the right questions and pick up the tool corresponding to the following questions:

  • How resilient is a mobile application to attack techniques (reverse engineering, tampering)?
  • How protected is the code, in other words, how many exploitable vulnerabilities?

Testing the mobile app in real conditions

esChecker’s unique Dynamic Application Security Testing (DAST) technology leverages specific resources, such as real devices, to perform testing when the application is running.

In-app protections can take place at different places in your app. Doing so, you can make sure that the application behaves as expected when running critical functions on specific screens.

The hacking approach

Mobile application security is a complex field, and you can’t keep up in following developments in this area. Leave it to our security experts.

esChecker is a SaaS solution whose tests are continuously updated to reflect the hacking techniques. Running the tests on mobile apps will tell you where the weak spots are and it will guide you through improving your app regarding resilience to hacking.

Don’t say it, prove it

Confidence comes by being able to demonstrate you made the right thing.

esChecker's report provides a clear way to show demonstration of compliance from your chosen policy or from a standard like OWASP. Our unique technology encompasses the OWASP Resiliency layer (MASVS-R).


Continuous validation

Turn your DevOps into DevSecOps with continuous integration. Security is an app feature. Make sure to continuously test every new build to avoid protection regressions. We support the most popular CI/CD frameworks: Jenkins, CircleCI, Gitlab, etc.

Download the European Mobile Banking App Security Benchmark

Did you know that 80% of Mobile Banking Apps don't have ANY root detection?

We have analysed 120+ European Bank Mobile Apps, looking for protection trends and best practices with esChecker. And we've gathered thousands of test results in this comprehensive report.

Get your free copy

Automate your security testing

esChecker helps you automate your Mobile Application Security Testing.

Test resilience to attacks

Techniques like debug, code injection, root privileges, …

Investigate code vulnerabilities

Cover misconfigurations, cryptography, storage, …

100% code coverage

Runtime testing is run by replaying a recorded sequence.

Tune your test campaign

Select your test campaign. Set the success criterias.

Test evidence

Video and snapshot are available.

Immediate feedback

In minutes, the tests outcome is given.

Fields of application


Integrate Security QA early in your Development Process. Don’t wait until your application is live to make the relevant security checks.

Chief Information Security Officer

Take control of the risk management by enforcing a security policy for all mobile app development.

Thought leader

Explore the good practices in a given market and the related technological trends in mobile app security.

Regulation authority

Leverage a MAST tool to request a demonstration of compliance within your ecosystem.

Gartner Peer Insight Reviews


"[...] Using their tool esChecker at each step of your app development helps you make a 360 review of the security of your app in a few minutes. Just need to adjust your evaluation criteria on a self-made basis, creating scenarios as required, depending on your context or your security objectives, and you're ready to run the tool.

No doubt: a powerful tool for customers, and an amazing help for developpers!"



"eShard MAST turned out to be a nice complement to our mobile offering.

Our customers were enthusiastic about the technology and how much they learnt about mobile app security by using eShard's tool.

The DAST is particularly above any other solution, as far as we know. And it seems that more is about to come"



"I've been in contact with eShard for almost a year and I have been really impressed with their solution.

It is simple to use but the technology behind the scene is brillant and efficient. Moreover, since the beginning of our conversation, the solution has evolved quickly and I'm sure they will be able to help more companies to evaluate their app against the different issue a mobile app can face."



"We were impressed by the state-of-the-art technologies and techniques that eShard's consultants used when conducting penetration testing on our products.

[...] Within esChecker, the eShard team has included their years of experience in mobile application vulnerability testing in an automated testing package that is easy to use and provides detailed vulnerability information."


Blog Articles


On the road to bring cybersecurity to medical devices

3 min read
Edit by Gagnerot Georges Oct 28, 2021
CopyRights eShard 2022.
All rights reserved
Privacy policy | Legal Notice
Side Channel AnalysisLaser & EM Fault InjectionFirmware Security AnalysisSecurity Failure AnalysisVulnerability Research