Course curriculum

  • 1

    Introduction

  • 2

    Introduction to Android

  • 3

    Android Architecture

    • 4 - Android Software Stack

    • 5 - Android Run Time (ART)

    • 6 - APK File Structure
  • 4

    Android's Security Model

    • 7 - Application Sandboxing

    • 8 - Permissions

    • 9 - SELinux
  • 5

    Android Internals

    • 10 - Developer Overview

    • 11 - Creating an Android Virtual Devices (AVD)

    • 12 - Developing a Basic Application - 1

    • 13 - Developing a Basic Application - 2

    • 14 - Android Components
  • 6

    Setting up the Laboratory

    • 15 - Virtualisation Platform

    • 16 - Enabling Virtualization (VT-x or AMD-V) in BIOS

    • 17 - Lab's Architecture Diagram

    • 18 - Using VirtualBox vs VMware

    • 19 - VirtualBox Install & Run

    • 20 - Important Note before Kali Installation

    • 21 - Installing Kali From VMWare File for VMware - Step 1

    • 22 - Installing Kali From VMWare File for VMware - Step 2

    • 23 - Installing Kali From VMWare File for VMware - Step 3

    • 24 - Installing Kali From ISO File for VMware - Step 1

    • 25 - Installing Kali From ISO File for VMware - Step 2

    • 26 - Installing Kali From ISO File for VMware - Step 3

    • 27 - Installing Kali From ISO File for VirtualBox - Step 1

    • 28 - Installing Kali From ISO File for VirtualBox - Step 2

    • 29 - Installing Kali From OVA File for VirtualBox - Step 1

    • 30 - Installing Kali From OVA File for VirtualBox - Step 2

    • 31 - Installing Kali From OVA File for VirtualBox - Step 3

    • 32 - Installing Genymotion

    • 33 - Installing MobSF

    • 34 - Installing VSCode - APK Lab

    • 35 - Installing APK Studio

    • 36 - Installing Apktool

    • 37 - Installing Android Debug Bridge (ADB)

    • 38 - Installing Bytecode Viewer

    • 39 - Connecting Android Emulator to Kali

    • 40 - Connecting a Real Device to Kali

    • 41 - Rooting on Android Device
  • 7

    Android Static Security Analysis

    • 42 - Reverse Engineering

    • 43 - Information Gathering

    • 44 - Repackaging and Resigning

    • 45 - Static Analysis with MobSF

    • 46 - Root Detection

    • 47 - Obfuscation Techniques
  • 8

    Android Pentesting

    • 48 - OWASP Mobile Top 10

    • 49 - Vulnerable Mobile Apps

    • 50 - Insecurebankv2 - Running the Back-End Server

    • 51 - InsecureBankv2- Insecure Login Mechanism

    • 52 - InsecureBankv2 - Hidden Button in the Login Mechanism

    • 53 - InsecureBankv2 - Developer Login

    • 54 - InsecureBankv2 - Insecure Credentials Storage

    • 55 - InsecureBankv2 - Debug Mode Enabled

    • 56 - Insecurebankv2 - Backup Mode Enabled

    • 57 - InsecureBankv2 - Insecure Logging

    • 58 - InsecureBankv2 - Root Detection Bypass with APKLab

    • 59 - InsecureBankv2 - Root Detection Bypass with APK Studio

    • 60 - InsecureBankv2 - Insecure Webview Implementation

    • 61 - InsecureBankv2- Android Pasteboard Vulnerability

    • 62 - Insecurebankv2 - Android Keyboard Vulnerability