Hacking Mobile Apps

The “Hacking Mobile Apps” technical training is an excellent gateway to learn hacking mobile apps, including android, iOS and hybrid apps. Attendees will learn the methodology of detecting the OWASP Top 10 types of vulnerabilities of mobile apps. Additionally, the training also includes attacking the app’s backend API. This training requires no experience in hacking nor in mobile apps development. It is loaded with exercises and demos to make learning practical and also fun.

This training combines what is needed to learn hacking and pentesting of mobile apps. In addition to the 2 most popular types: native android and native iOS apps, this training discusses hybrid mobile apps, such as Cordova and Flutter apps. The training offers many demos and exercises. We use powerful online emulators that makes the online learning experience as real as possible.

In this training attendees learn:

• The methodology of hacking mobile apps
• OWASP Top 10 vulnerabilities of mobile apps
• Static analysis of mobile apps, addressing decompiling apps, code analysis and more
• Dynamic analysis of mobile apps, such as testing app’s storage, malicious apps’ attacks and phishing attacks.
• Focus on hybrid mobile apps such as Flutter and Cordova.
• Manipulate apps in runtime using Frida and objection.
• Apply Man in the Middle scenario and attack the app’s API using Burp Suite.
• Measures to secure your mobile app

What we prepared for you:

• Dedicated chapters for android, iOS and hybrid apps.
• A Virtual Box Virtual machine that contains all required tools.
• Vulnerable apps developed specially for this training.
• Dedicated online android and iOS emulators