- AMMO
- CFP
- CTF
- CXO Track
- Exhibition
- For You
- Hackathon
- HackerHelp
- Horror Stories from Hacker World
- Recreation
- Resume Clinic
- Schedule
- Speakers
- Sponsors
- StartVille
- Training
- Venue
- Volunteer
- Goa 2020
- Training
- Xtreme Android Hacking
Xtreme Android Hacking
Ankur Bhargava
Trainer Name: Ankur Bhargava
Title: Xtreme Android Hacking
Duration: 2 Days
Dates: 4th - 5th March 2020
Description
Being one of the most used OS of the world the growth of Android Operating system has been exponential. There has been surge in android application development and every business which usually has a presence online also has a mobile app. The training aims to teach attendees Android application security from basic level to advanced. This will cover the toolset, frameworks, techniques used to identify, analyse and exploit vulnerabilities in Android Applications. Class will be focussed more on Hands-on experience and at the end of the training attendees will be able to do a penetration testing of any Android Application at the advanced level. Anyone who is interested in Mobile Security, work on android development, Penetration Testing , and Security Enthusiasts can attend the training.
Course Details
- Android Architecture
- Operating System Overview
- File system Overview
- Security Model
- Developer Overview
- Application Components
- Application Structure
- The SDK and Android Tools
- Developing a basic application
- Intro to PenTesting
- Setting up the environment
- Static and Dynamic Analysis
- Reverse Engineering and Various Obfuscation Techniques
- Rooting basics, Root detection and Bypass
- Application Security Issues -
- Weak Authorizations
- Issues related to Activities, intents, broadcast receivers
- Exploiting Backup and debuggable apps
- Exploiting Javascript Interfaces
- SSL Pinning, Bypass and Hooking
- React Native Application Security
- Issues related to Deeplinks
- Hands-on on Damn Vulnerable Android App
- Security Assessments using Drozer
- Challenges
Attendees will be provided with
- Training Material / Slide Decks,
- Mobile Application Hacking Lab Manual,
- Practice apps,
- Lab VM
Pre-requisites for the attendees
- Laptop with 20+ GB free hard disk space 4+ GB RAM
- Windows 7/8 , Ubuntu 12.x + (64 bit Operating System),
- Android SDK , Genymotion installed.
- Intel / AMD Hardware Virtualization enabled Operating System
- Administrative access on your laptop with external USB allowed
About the Trainer
Ankur Bhargava is leading Application Security team at Cure.Fit. With many years of experience in this field, Mobile and REST API Security became his forte. He is also well versed in different flavours of Security such as Application, Network, and API testing. He has been speaking at many conferences in India, viz Cocon, Ground Zero and Nullcon on topics like 'PDF Exploitation', 'Mobile Automation Framework', 'Android Security'. He also had provided training at Nullcon, c0c0n in 2012, 2013 on Android Security. He also presented an Android security automation tool called ‘Mafia’ in Blackhat EU 2017. The tool was also presented in Blackhat USA 2018.