The prime objective of this training is to train professionals on Serious threats and vulnerabilities associated with the web & mobile applications, which allows them to build and deploy testing processes in a secure way. Knowledge of the OWASP or SANS framework will help their organizations in testing applications to build a secure and reliable applications.

Course Content:

  • Introduction to Mobile Application Security

  • Android Application Fundamentals

  • Lab Environment Setup & Reverse Engineering

  • OWASP Framework Introduction

  • Static Vs Dynamic Analysis

  • Android Vulnerabilities Overview & Deepdive
    • M1: Improper Platform Usage
    • M2: Insecure Data Storage
    • M3: Insecure Communication
    • M4: Insecure Authentication
    • M5: Insufficient Cryptography
    • M6: Insecure Authorization
    • M7: Client Code Quality
    • M8: Code Tampering
    • M9: Reverse Engineering
    • M10: Extraneous Functionality
  • Tools Introduction (Open Source)

  • Scanning & Live Testing

  • Secure Code Review / SAST

  • Exploitation & Pentesting (Manual & Automated)

  • Mitigation Strategies¬†& Best Practices

  • Course Resources (Videos, PPTs & Playgrounds for Hacking)