Weāre proud to share that Quokka was mentioned as a Representative Vendor of mobile application security testing in the Gartner Journey Guide to Choosing Software Engineering Security Tools, published February 18, 2026, by Aaron Harrison.
As per the report, āthe following insights guide leaders on their journey to plan, implement, monitor and continuously improve their security tools.ā
Security tooling strategy is a business imperative
Gartner predicts, āBy 2030, organizations that build their own security tools will spend 15% of engineering capacity maintaining those tools, eclipsing the cost of purchased tools.ā
According to the report, āTo manage tool sprawl and deliver security outcomes at an acceptable cost, you need to:
- Plan. Define and prepare your security tooling strategy
- Do. Implement the right tools at each development stage
- Check. Monitor and evaluate your security tool portfolio
- Adjust. Continuously improve, standardize and drive adoption of security toolsā
Gartner identifies Quokka as one of the vendors providing mobile application security testing in the āDoā phase.
How Quokka delivers outcomes-driven mobile app security
The report states, āApplication security works best when itās outcomes-focused, uses fewer tools with higher adoption, and is built into developer workstreams.ā
Quokkaās advanced mobile application security testing (MAST) solution, Q-mast, performs full-spectrum testing on iOS and Android apps.
Key outcomes of Q-mast include:
- Scans in <60 minutes, no source code needed
- <1% false results
- Analysis of compiled app binary, regardless of in-app or run-time obfuscations
- CI/CD integration that reduces friction between developers and security for faster releases
Key capabilities of Q-mast:
- Static, dynamic, and interactive analysis (SAST, DAST, IAST) tailored for mobile environments
- Real-time threat intelligence and behavioral analysis to detect malicious behavior and privacy violations
- Software Bill of Materials (SBOM) generation and library-level vulnerability scoring for supply chain visibility
To learn more about Q-mast, request a demo and learn how Quokka fits within your unique environment. Visit Gartnerās website to access the full Journey Guide to Choosing Software Engineering Security Tools report.
Gartner, Journey Guide to Choosing Software Engineering Security Tools, Aaron Harrison, 18 February 2026.
GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartnerās research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
