Find the information you're looking for in our library
of blogs, news, videos, whitepapers and more.
Find the information you're looking for in our library of blogs, news, videos, whitepapers and more.
Highlighting the top Quokka content

Under the Promise of Early Success, CISA Expands its Beta Mobile App Vetting Service
CISA is proud to expand access to the Mobile App Vetting (MAV) service. CISA granted MAV an Authorization to Operate on February 8th, 2023, acknowledging the service’s key role in combating a growing risk of mobile app vulnerabilities threatening Federal Civilian Executive Branch (FCEB) agencies. Moreover, it is available at no cost to the user.
Learn MoreZero Trust Architecture: Mobile App and Device Security for Federal Agencies
Federal agencies are being mandated to deploy a Zero Trust model by 2024 however many overlook the importance of mobile application security. This whitepaper outlines how to avoid this pitfall and exponentially reduce your threat landscape.
Learn More
Election Security and Vote-by-App
A hidden system app can also be referred to as a ghost app and although these applications can be beneficial they can also pose threats to the user.
Learn MoreBlog
Keep up to date with the latest industry news in cybersecurity's ever-evolving landscape.
See All Blog Posts
Strengthening Mobile App Security: Defense in Depth with MAST & RASP
In this blog, we will delve into two crucial components of defense in depth: Mobile Application Security Testing (MAST) and Runtime Application Self-Protection (RASP).
Read More
Examining the Security of Pre-installed Software on Prepaid Android Carrier Smartphones
In this blog, we share an overview of the security holes we found in pre-installed software on prepaid Android carrier smartphones.
Read More
Managing the Security and Privacy Pitfalls of Mobile App Extensions
Mobile app extensions are allowing developers to create advanced user experiences globally. As complexity grows, so does the importance of prioritizing security and data privacy.
Read MoreIn the News
Stay up to date on the latest press releases, news stories and media highlights from Quokka.
Read More NewsUncovering Security Vulnerabilities in Prepaid Android Smartphones, Quokka’s R&D Team Exposes Systemic Weaknesses
August 14, 2023
The research and development team at Quokka discovered multiple security vulnerabilities in prepaid Android Smartphones, including instances of arbitrary command execution in privileged processes.
Read MoreQuokka’s Q-Scout Solution Revolutionizes Device Management with Industry’s First Personal Device Management Solution
June 7, 2023
Mobile security solution transforms BYOD in an enterprise ecosystem, prioritizing the privacy of company and personal data.
Read MoreDisrupt Tech the Authorized Distributor of Quokka
May 30, 2023
Disrupt Tech Co., Ltd is now an authorized distributor of Quokka’s products Q-MAST, Q-Vest, Q-Scout and Firmware Analysis and announces the recent establishment of Quokka’s Q-MAST to Advanced Info Service Public Company Limited (“AIS”), the leading Mobile, Fiber Network and Digital Service Provider in Thailand with more than 40 million subscribers.
Read MoreWebinars
Videos and content where you can learn about the latest threats, trends and issues in cybersecurity. Join us from wherever you are.
View More WebinarsSafeguarding Federal Agency Mobile Applications and Devices
Experts discuss Quokka’s Mobile Application Security Testing and Application Vetting solutions and how FCEB agencies can take advantage of this service without an impact to their annual budget.
Is Your Mobile App Supply Chain Putting Your Organization at Risk?
Demand for innovative mobile apps has led to organizations seeking third-party support for development and UX. However, outsourcing can create security challenges, leaving users open vulnerabilities. This webinar outlines application security during and after the development process.
Going Back into the Office? Learn How to Secure your BYOD & Protect Your Company
With many companies being in the early stages of returning to the office, we’re here to remind you that careful planning to secure employee’s devices during this time is very important and we’re here to help.
Whitepapers
Insights and helpful assets for exploring cybersecurity and digital security.
Read More WhitepapersYour Intern Is Leaking Company Secrets and No One Knows It
Ensuring intern-accessed data is secure can be challenging for IT teams due to BYOD security, asynchronous engagement, and open policies on information sharing. This whitepaper outlines how Q-Scout can better protect your company’s data.
Read MoreZero Trust Architecture: Mobile App and Device Security for Federal Agencies
Federal agencies are being mandated to deploy a Zero Trust model by 2024 however many overlook the importance of mobile application security. This whitepaper outlines how to avoid this pitfall and exponentially reduce your threat landscape.
Read MoreWhat Is Vulnerability Management?
Vulnerability Management is a constant state of identifying, evaluating, and remediating security vulnerabilities. Our whitepaper analyzes the importance of maintaining a proactive security posture and reducing the attack surface before a cyber criminal makes your organization their next target.
Read MoreDatasheets
An in-depth description of Quokka solutions.
Detecting and Measuring Misconfigured Manifest in Android Apps
This paper presents ManiScope, a tool to automatically detect misconfigurations of manifest files when given an Android APK. When implemented ManiScope identified misconfigured pre-installed apps with various security implications including app defrauding, message spoofing, and more.
Download101 Commands Technical Paper
We deeply examine an instance of an engineering app that allows external entities to invoke its “custom” commands that will execute in the privileged context of the engineering app.
DownloadBootlooped - Assorted AOSP Attack Technical Paper
We examine some attack surfaces accessible to unprivileged third-party apps to determine how common functionality can be abused to affect the overall state of Android systems.
DownloadUse Cases
Detailed overview of how Quokka solutions solve real-world pain points.
Q-MAST Solution Spotlight: Federal Agency
When security, privacy, and discretion are key, federal agencies lean on Q-MAST to establish trust.
Read MoreQ-MAST Solution Spotlight: Banking
Global financial institutions trust Q-MAST to keep mobile apps safe, secure and compliant.
Read MoreQ-MAST Solution Spotlight: Medical Schools
Learn why some of the nation's leading medical schools choose Q-MAST for mobile application vetting and security.
Read MoreGuides
An in-depth description of Quokka solutions.
Mobile Application Security Best Practices for Fintech Apps
In-depth guide on Quokka's industry leading mobile application security testing solution, Q-MAST, currently used by the world's leading financial institutions.
Read MoreFederal Agency Guide to DevSecOps Adoption
This guide outlines specific challenges federal agencies face with DevSecOps adoption and 3 key ways to navigate this path between innovation and security.
Read MoreNewsletter
Subscribe today for news, updates, and insights for your work and live anywhere world.