Request Demo
Request Demo

Proactively remediating mobile zero-day exploits protects citizens and national security

Trust Contextual Mobile Security Intelligence from the first and longest-standing mobile app security for the US Federal Government

Contact us

Trusted by the US Federal Government since 2011

Quokka powers the CISA MAV shared services for mobile app vetting which is operational with an ATO for FedRAMP High.

The Quokka Advantage

Mobile security benefits that make you smile

Peace of mind

Know your app security intelligence solution delivers the industry’s most comprehensive insights, even for the latest OS versions, in minutes

Informed decisions

Make risk-based decisions during software development or deployment of 3rd party apps based on real-world mobile app intelligence

National security

Scan all mobile apps to remediate malicious code in order to prevent supply chain attacks and breaches that undermine national security

Quokka technology powers  CVE discovery

Get details for 220+ CVEs

Quokka solutions help agencies meet mobile cybersecurity requirements

BOD 23-01: Improving Asset Visibility and Vulnerability Detection on Federal Networks 

  • Requirements – all Federal civilian (FCEB) agencies must report detailed data about vulnerabilities, including on mobile devices, to CISA at timed intervals using automated tools

  • Quokka solution – in preparation for the BOD, CISA prepared the CISA MAV shared services (powered by Quokka) to automate the vulnerability identification in mobile assets to meet the mobile-specific requirements.
Learn more →

Secure by Design

  • Requirements – reasonable protection against malicious cyber actors successfully gaining access to devices, data, and connected infrastructure, and software manufacturers should perform a risk assessment to identify and enumerate prevalent cyber threats to critical systems

     

  • Quokka solution – Q-MAST automated mobile app security testing supports manufacturers and developers efforts to adopt not only secure-by-design principles but also secure-by-default standards. 
Explore Q-MAST →

Executive Orders related to protecting Americans’ sensitive data from foreign adversaries

Quokka’s app scanning technology identifies backdoors in mobile apps and devices – and where data will be sent.

Secret Back Door in Some U.S. Phones Sent Data to China, Analysts Say

Researchers find some phones secretly sending data to China

“Of the 33 mobile apps evaluated by Quokka (formerly Kryptowire), 32 had security or privacy concerns (access to camera, contacts, or SMS messages); 18 of the apps contained critical flaws (hardcoded credentials stored in the app, app accepts all SSL certificates, and is susceptible to man-in-the-middle attacks).”

Department of Homeland Security Science and Technology Directorate

Quokka discovers and delivers unsurpassed mobile security intelligence

Explore Quokka Intelligence

Automate mobile app vetting (MAV)

Explore Q-Vet

Automate app scanning (MAST)

Explore Q-Mast

App intelligence for MDM

Explore Q-Scout

DHS Automated Vetting Process for Mobile Apps Could Cut Costs

The Science & Technology Directorate sees improvements for quickly approving mobile apps for government use

Read full article

Meet mobile app security security standards

NIST 1800-22

BYOD Guidelines – Quokka (then Kryptowire) participated in creating the NIST Special Publication 1800-22 and its insights and technologies were part of the example solutions used in the guide under the Cooperative Research and Development Agreement

NIST 1800-21

COPE Guidelines – Quokka (then Kryptowire) participated in creating the NIST Special Publication 1800-22 and its insights and technologies were part of the example solutions used in the guide under the Cooperative Research and Development Agreement

NIST 800-163

Vetting the Security of Mobile Applications – Quokka developed an automated mobile app vetting solution

Automating NIAP Requirements Testing for Mobile Apps

Quokka (then Kryptowire) contributed automated analysis using proprietary mobile app vetting infrastructure

NIAP v1.4

Protection Profile for App Vetting – Quokka has worked with federal agencies to meet both the functional and assurance requirements outlined in this profile

“The Quokka platform is the only platform validated to support NIAP mobile application security standards on the market and power[s] the industry’s first FedRAMP-certified CISA Mobile App Vetting program available to the Federal Civilian Executive Branch Agencies.”

Josh Slattery, VP of Technology Sales, Vertosoft

Federal Partners

Resellers & Distributors
Technology Partners

Quokka Government Procurement Contracts

CDM

GSA

ITES-SW2

NASA SEWP V

Learn more about becoming a Quokka Federal Partner.

Contact us

Achieving mobile zero trust requires visibility into mobile assets and insights on threats – as they emerge

Rely on the industry’s only proprietary, defense-grade app scanning engines that uncover more security, privacy, and malicious behavior findings than any other app testing tool

Learn more about mobile security

tile-events

Upcoming Events

tile-q-intel

Quokka Intel: the mobile security intelligence blog

Read Latest Briefing

From the resource center

Mobile security that makes you smile.

Sign up for our newsletter, The Quokka Intel Briefing

Copyright © 2024, Quokka. All rights reserved.

Solutions

for Security
for IT
for DevSecOps
Federal
State & Local
Financial Services
Healthcare
MSSPs
mCommerce
Mobile Gaming

Products

Resources

Resource Center
Quokka intel blog
Events
Support
Technology Partners
Resellers & Distributors

Research

Assigned CVEs
Original research
Methodology
Vulnerability Disclosure

Company

About Us
Newsroom
Leadership
Careers
Contact Us
Privacy Policy
Terms of Use