Free Trial

Stay ahead of the latest mobile threats

Identify potential mobile app security threats, and take action to protect your organization from harm.

ioc-gathering@2x

IOC gathering and threat hunting

Augment static mobile malware and threat research with advanced dynamic analysis. Detonate mobile malware or actively engage with smishing and phishing scams directly from a virtual iOS or Android device. Easily change the device’s physical location (GPS) to examine location-based threats, and use a local proxy with VPN connectivity to gain network connectivity anywhere in the world.

sansboxed-mobile@2x

Sandboxed malware detonation

Safely detonate mobile malware on sandboxed Corellium virtual devices. For mobile threat hunting, use built-in visualization tools for root access, evidence and IoC analysis, filesystem access, SSL/TLS stripped network monitoring, and mobile app debugging. A comprehensive API and USBFlux technology enables integration with leading development and security research tools such as IDA Pro, Frida, and Burp Suite

Technical capabilities

Easily spin up near limitless combinations of iOS and Android devices, OS versions, and mobile apps. Gain instant root access, no need to apply jailbreak code or tools.

Threat and Mobile Malware Analysis

  • Conduct research on any OS version; jailbroken, rooted, or not
  • Detonate and monitor mobile malware apps (IPAs and APKs) on sandboxed virtual devices
  • Easily intercept C2/malware traffic and strip all SSL/TLS
  • Simulate SMS (on iOS) to investigate smishing and phishing attacks
  • Browse the device’s file system to conduct threat hunting and gather IoCs
  • Gain instant access to mobile malware app syscall tracing for dynamic analysis
  • Control device sensors, GPS location, and device IDs

Conduct More Research, Faster

  • A single cloud-based or onsite appliance-based platform for both iOS and Android.
  • Snapshot and restore virtual devices nearly instantly
  • Stop hunting the “used” market for specific devices
  • No need to ship physical devices to global team members
  • Eliminate time wasted with physical device maintenance

Training & Education

  • Conduct mobile malware and threat research training
  • Enable a mobile app demonstration platform for customers
  • Eliminate the need for physical devices in the classroom
  • Trainers and students only need a browser
  • Quickly setup and clone virtual devices for each student's own use

Mobile Malware Solution Highlights

Arm your Security, IT and SOC teams with the cutting edge tools they need to stay ahead of cyber threats.

IoC Gathering and Threat Hunting

Augment static mobile malware and threat research with advanced dynamic analysis. Detonate mobile malware or actively engage with smishing and phishing scams directly from a virtual iOS or Android device. Easily change the device’s physical location (GPS) to examine location-based threats, and use a local proxy with VPN connectivity to gain network connectivity anywhere in the world.

Mobile Malware Detonation and Sandboxing

Safely detonate mobile malware on sandboxed Corellium virtual devices. For mobile threat hunting, use built-in visualization tools for root access, evidence and IoC analysis, filesystem access, SSL/TLS stripped network monitoring, and mobile app debugging. A comprehensive API and USBFlux technology enables integration with leading development and security research tools such as IDA Pro, Frida, and Burp Suite.

01 Malware Detonation

Built-in network monitoring tools let you analyze encrypted C2 and app traffic instantly. CoreTrace gives you access to app syscall tracing during execution.

Powerful built-in tools

Tools for every occasion. Powerful features for power users. Check out our tools or integrate them with your favorites.

Explore our platform & tools

Flexible deployment options

On-site Corellium server and desktop appliances use the latest Arm processors

Onsite appliances

On-site Corellium server and desktop appliances use the latest Arm processors. Appliances can be air-gapped for use in high-security locations.
Cloud service hosted on AWS with Corellium

Cloud service

The Corellium cloud service is hosted on AWS, using Amazon's Graviton Arm servers. Private AWS-based solutions are also available.

Learn more

View live and recorded webinars, browse technical articles, or check out available training to see Corellium in action.

Webinars Articles Training
Solutions
Mobile Malware Research