Mobile Application Hacking and Penetration Testing (Android)

1

Introduction
- Introduction To Mobile Apps
- Mobile Application Security part 1
- Mobile Application Security part 2
- Mobile Application Penetration Testing
- The most common areas where we find mobile application data resides
  FREE PREVIEW
2

Introduction to Android
- The Architecture of Android
- The App Sandbox and the Permission Model
- AndroidManifest.xml File
- Android Compilation Process
- Android Startup Process
- Android Application Components
3

Preparing the Battlefield
- Preparing the Battlefield
- Unable to start the virtual device (Error Message)
4

Useful utilities for Android Penetration Testing
- Android Debug Bridge (adb)
- Digging deeper into Android (ADB tool)
  FREE PREVIEW
- Burp Suite
- intercept and analyze the network traffic
5

Reversing APKs
- Reversing APKs Intro
- Reversing an Android application
6

OWASP - Common Mobile Attacks
- OWASP top 10 vulnerabilities for mobiles
- Damn insecure and vulnerable App
- Install DIVA (Damn insecure and vulnerable App)
- What is Insecure Logging?
- Insecure Logging Issue
- What is Insecure Data Storage?
- Insecure Data Storage
- Database Insecure Storage
- Insecure Data Storage Inside Temporary Files
- Hardcoding Issues
- What is SQL injection?
- Input Validation Issues - SQL Injection
- Android WebView Vulnerabilities
- Input Validation Issues - Exploiting Webview Vulnerability