I need a thorough penetration test on a cross-platform Flutter application that runs on both iOS and Android. My main objective is to uncover any security vulnerabilities before the next public release. Scope of testing • Focus areas: authentication process, data storage, and all network communication between the app and our back-end services. • Attack scenarios of interest: man-in-the-middle interceptions (both on public Wi-Fi and cellular) and brute-force attempts against the login flow. Access & environment You will receive the latest build files (APK, IPA via TestFlight) alongside limited back-end documentation and an isolated staging server so you can work without affecting production data. Expected deliverables 1. A detailed report that lists each finding, its severity, proof-of-concept steps, and clear remediation advice. 2. A short executive summary that I can share with non-technical stakeholders. 3. A follow-up call or written clarification to walk me through critical issues, if needed. Please outline your testing methodology (OWASP MASVS, PTES, etc.) and note any specialized tools—Burp Suite, Frida, mitmproxy—you plan to use so I can approve them in advance. I’m aiming to kick this off within the week and will be responsive to facilitate quick access and fast answers.