# TCM - Mobile Application Penetration Testing

![Mobile Application Penetration Testing - academy.tcm-sec.com - © TCM Security](/files/6tXrxhDm5c86elahgoq0)

## [MAPT](https://academy.tcm-sec.com/p/mobile-application-penetration-testing) Course Goals and Objectives

* Learn Android and iOS Mobile Application penetration testing
* Setting up iOS and Android lab environments
* Manual Analysis for sensitive data
* Automated Analysis with MobSF
* Bypassing SSL Pinning with Objection and Frida
* OWASP Mobile Top Ten
* iOS Jailbreaking

## Course duration & Topics

\~ 9 hours

1. [Introduction & Mobile Pentesting](/tcm/courses/mapt/1-intro.md)
2. [Android Security](/tcm/courses/mapt/2-android.md)
3. [Android Lab Setup](/tcm/courses/mapt/3-android-lab.md)
4. [Android Static Analysis](/tcm/courses/mapt/4-android-static.md)
5. [Android Dynamic Analysis](/tcm/courses/mapt/5-android-dynamic.md)
6. [Android Bug Bounty](/tcm/courses/mapt/6-android-bonus.md)
7. [iOS Security](/tcm/courses/mapt/7-ios.md)
8. [iOS Lab Setup](/tcm/courses/mapt/8-ios-lab.md)
9. [iOS Static Analysis](/tcm/courses/mapt/9-ios-static.md)
10. [iOS Dynamic Analysis](/tcm/courses/mapt/10-ios-dynamic.md)
11. [iOS Bug Bounty](/tcm/courses/mapt/11-ios-bonus.md)

Instructor: [Aaron Wilson](https://www.linkedin.com/in/wilson-security/overlay/about-this-profile/)

## Useful links and resources

* Where to find the [Mobile Application Penetration Testing](https://academy.tcm-sec.com/p/mobile-application-penetration-testing) course? - [TCM Academy Courses](https://academy.tcm-sec.com/courses)
* TCM discord channel - [TCM Security Discord](https://discord.gg/tcm)
* 🔬 For the **training** part I will use my home lab environment and
  * Rooted physical Android phone
  * Jailbroken physical iPhone
* [My MAPT references](/tcm/courses/mapt/mapt-references.md)

> #### ❗ Disclaimer
>
> * **Do not use the covered attacks and techniques on real Mobile Applications, IP addresses, hosts or networks without proper authorization!**

***


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://blog.syselement.com/tcm/courses/mapt.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.