IIRF Online > IT & Software > Network & Security > Penetration Testing > Mobile Penetration Testing of Android Applications
Mobile Penetration Testing of Android Applications by Udemy
Computer security is no more about PCs. Is your TV, fridge and mobile phone. Learn to audit mobile apps!
Course Highlights
- Learn to audit or perform penetration tests agains Android applications
- Learn tools and techniques
- Perform real world attacks on Android Devices and Apps
- Perform Certification Pinning bypass for most of Android Apps
- Explore OWASP Top Ten Mobile and Web most common vulnerabilities
- Android Malware Analysis
Skills you will learn!
Curriculum
3 Topics
About the Author
What to expect from this course
Join Our Online Classroom!
3 Topics
Android Studio
AVD Manager is missing? ADB Connection and Monitor in Android Studio 3.5/newer
Android Debug Bridge (ADB)
6 Topics
Android emulator or Android Device?
Android rooting
Setting up a Proxy for Android
Installing CA Certificate
Virtual Machine Download
Android Vulnerable Application Setup
12 Topics
APK file Structure. AndroidManifest XML file
Reversing to get Source code of the Application - decompiling with dex2jar
Reversing and Re-compiling With APKTool
APK Teardown in a Nutshell using Dexplorer on your Android Device
Static vs Dynamic Analysis
Static Analysis of Android Application using QARK
Dynamic Analysis of Android Application using Inspeckage and Xposed
MobSF - Mobile-Security-Framework. Malware analysis
Automated Security Assessments with Drozer
Intercept traffic using Wireshark and tcpdump
Intent Sniffing
Fuzzing using Burp - Password Brute-Force. Username enumeration
3 Topics
General Description
Automatic bypass of certificate pinning
Manual bypass of certificate pinning
7 Topics
Bonus - Take control over an Android phone using metasploit
Penetration Testing Cheat Sheet
OWASP Top 10 Mobile Vulnerabilities and Attacks
Further research - Automatic and Manual Scanning for Vulnerabilities
For Developers - Android Security Guidlines
Bonus - Easily download any APK file from Google Play directly on your PC
Final Words
7 Topics
Further information
Core Problems - Why Web Security
Spider and Analyze a Website using Burp
Brute-frocing Web Resources using Dirb and Dirbuster
SQL injection
Exploiting SQLi using Sqlmap and Getting Remote Shell
Upload and Remote File Execution
5 Topics
Alternative setup - Download Burp. Free vs Paid
Proxy - General Concept
Target Module
Proxy Module - part 1
Proxy Module - part 2
Mobile Penetration Testing of Android Applications
Related Penetration Testing Courses
Thank You!
Your review has been submitted successfully.