Mobile Penetration Testing

course syllabus

  • Introduction
  • Why Mobile applications are targeted
  • Overview of application attack vectors
  • Mobile Application Architecture
  • Client Application
  • Web Services
    • SOAP service
    • RESTful Service
  • Web Services Security
  • Authentication
    • Brute Force
    • Bypassing Authentication
  • Session Management
    • Session Hijacking
  • Authorization
    • Authorization Bypass
    • Privilege Escalation
    • Business Logic Testing
  • Data Validation
    • SQL Injection
    • Cross Site Scripting
  • Communication and Crypto
    • PKI
    • SSL
  • Mobile Client Security
    • Client Side injection
    • Reverse engineering
    • Insecure Data Storage
  • Web and Mobile App Integration
    • Advanced XSS Attacks
    • Advanced Logic Attacks

Apply Now