diff --git a/demos/ios/MASVS-STORAGE/MASTG-DEMO-0013/MASTG-DEMO-0011.md b/demos/ios/MASVS-STORAGE/MASTG-DEMO-0013/MASTG-DEMO-0011.md index 9e1cc6ade5..da450d3ce8 100644 --- a/demos/ios/MASVS-STORAGE/MASTG-DEMO-0013/MASTG-DEMO-0011.md +++ b/demos/ios/MASVS-STORAGE/MASTG-DEMO-0013/MASTG-DEMO-0011.md @@ -25,7 +25,6 @@ The output contains information that `isExcludedFromBackupKey` was used in the a {{ output.txt }} - ### Evaluation In the output we can see how the `kSecAttrKeySizeInBits` attribute is set to `1024` bits (0x400 in hexadecimal) using the `x8` register. This is later used to call `SecKeyCreateRandomKey`. diff --git a/tests-beta/android/MASVS-STORAGE/MASTG-TEST-0205.md b/tests-beta/android/MASVS-STORAGE/MASTG-TEST-0205.md index b120c720f6..ba90902b54 100644 --- a/tests-beta/android/MASVS-STORAGE/MASTG-TEST-0205.md +++ b/tests-beta/android/MASVS-STORAGE/MASTG-TEST-0205.md @@ -9,6 +9,7 @@ weakness: MASWE-0004 ## Overview This test verifies whether your app correctly instructs the system to exclude sensitive files from backups. There are two distinct APIs for instructing the system to exclude files: + 1. [Auto Backup](https://developer.android.com/identity/data/autobackup) 2. [Key-value backup](https://developer.android.com/identity/data/autobackup) Regardless of which API you use, Android provides a way to start the backup daemon to back up and restore your app's files. You can use this daemon to initiate the backup process and restore the app's data, allowing you to verify which files have been restored from the backup. diff --git a/tests-beta/ios/MASVS-STORAGE/MASTG-TEST-0206.md b/tests-beta/ios/MASVS-STORAGE/MASTG-TEST-0206.md index 2a92b4c081..f32cf5b405 100644 --- a/tests-beta/ios/MASVS-STORAGE/MASTG-TEST-0206.md +++ b/tests-beta/ios/MASVS-STORAGE/MASTG-TEST-0206.md @@ -14,7 +14,6 @@ iOS provides the [isExcludedFromBackup](https://developer.apple.com/documentatio 1. Run a static analysis tool such as @MASTG-TOOL-0073 on the app binary, or use a dynamic analysis tool like @MASTG-TOOL-0039, and look for uses of `isExcludedFromBackup` API. - ## Observation Inspect all files that you marked with `isExcludedFromBackup`.