TCM - Mobile Application Penetration Testing

MAPT Course Goals and Objectives

• Learn Android and iOS Mobile Application penetration testing

• Setting up iOS and Android lab environments

• Manual Analysis for sensitive data

• Automated Analysis with MobSF

• Bypassing SSL Pinning with Objection and Frida

• OWASP Mobile Top Ten

• iOS Jailbreaking

Course duration & Topics

~ 9 hours

1. Introduction & Mobile Pentesting

2. Android Security

3. Android Lab Setup

4. Android Static Analysis

5. Android Dynamic Analysis

6. Android Bug Bounty

7. iOS Security

8. iOS Lab Setup

9. iOS Static Analysis

10. iOS Dynamic Analysis

11. iOS Bug Bounty

Instructor: Aaron Wilson

Useful links and resources

• Where to find the Mobile Application Penetration Testing course? - TCM Academy Courses

• TCM discord channel - TCM Security Discord

• 🔬 For the training part I will use my home lab environment and

  • Rooted physical Android phone

  • Jailbroken physical iPhone

• My MAPT references

❗ Disclaimer

• Do not use the covered attacks and techniques on real Mobile Applications, IP addresses, hosts or networks without proper authorization!