Presented By: Dominic Chell, MDSec
This course has been cancelled.
The course follows chapters 1-9 of the Mobile Application Hacker’s Handbook, with a strong focus on practical attacks. Over the 2-day training course delivered by the lead author of the book, delegates will learn the tricks and techniques to hack and secure mobile applications on the iOS and Android platforms.
The 2 day course will take place on the 12th & 13th September 2017 at etc venues The Hatton.
Cost is £ 1,300 (inc VAT). Buy your place in our shop now.
Course Outline
Introduction to Mobile Application Security Assessment (Chapter 1)Analyzing iOS applications (Chapter 2)How to attack iOS applications (Chapters 3-4)Securing iOS applications (Chapter 5)Understanding Android applications (Chapter 6)Exploiting Android applications (Chapter 7-8)Securing Android applications (Chapter 9)
Key Learning Objectives
The security protections on iOS and Android devicesHow iOS and Android devices are jailbroken or rootedHow to quickly and efficiently pinpoint and exploit vulnerabilities in iOS and Android appsHow to decompile, reverse and patch iOS and Android appsHow to hack webviews, client-side databases and the keychainInstrument application runtimes using Frida, Cydia Substrate and CycriptExploitation of IPC mechanisms including content providers, URL handlers, application extensions, broadcasts, activities and intentsPractical exploitation of poorly implemented cryptographyBypass security controls such as root or jailbreak detectionReal-world techniques used to defeat real apps on iOS and Android!Knowledge of defensive and remedial advice
Student Requirements
A basic knowledge of programming and mobile security concepts.
Hardware & Software Requirements
Administrative access to the laptop and the ability to install a few tools, and disable personal firewalls or virus scanners should they get in the way of the lab exercises.We strongly recommend a personal laptop if your corporate laptop build is too restrictive this may affect your ability to participate in the course fully.A laptop with the capability to connect to wireless and wired networks.The laptop should be of a reasonable specification, we recommend at least 8GB of RAM with at least 16GB of disk space free and ideally be VTX compatible.Students require a player to run VirtualBox images
About the Trainer
Dominic is a director of MDSec and a recognised expert in mobile application security, having developed whitepapers, tools and presentations in this area. He is also the lead author of The Mobile Application Hacker’s Handbook. As part of his day job, Dominic delivers security consultancy and training on mobile security to leading global organisations in the financial, government and retail sectors.