Pentesting Exploits Noted In Smartphones
Take your skills as an Android penetration tester to the next level by exploring actively exploited security threats and vulnerabilities on the Android platform.
Your Comprehensive Training Journey
Using our Axolotl test application, created specifically for this course, you will practice building your own "attacker" application designed to exploit each discovered vulnerability. Real-world scenarios will illustrate the connection between theoretical knowledge and real-world attack strategies, equipping you with the skills to identify and exploit Android application weaknesses.
Explore `getIntent()`, Browsable Intents, NFC tag exploits, and MIME-type hijacking.
Abuse `grantUriPermissions` in ways typical testing overlooks.
Understand JavaScript Bridge threats, file access tricks, and Cross-Origin policy flaws.
Delve into custom permission structures for exploitation scenarios.
Dynamically inject malicious code into target apps to bypass security measures.
Your Instructor - Ken Gannon / 伊藤 剣
As a seasoned penetration tester with over a decade of experience, I specialize in mobile application security. My accomplishments include:
• Obtaining multiple CVEs related to mobile applications
• Ranking among the top 10 bug bounty contributors for the Samsung Bug Bounty program in 2021
• Successfully exploiting the Xiaomi 13 Pro at Pwn2Own 2023
• Successfully compromising the Samsung S24 at Pwn2Own 2024
In addition to my mobile application expertise, I hold various security certifications, including the OffSec OSCE3. Now, I'm dedicated to sharing my knowledge with students seeking to enhance their penetration testing skills in the mobile security domain.
Ready to take your Android penetration testing skills to the next level?
Our course is availalbe on Udemy! Check it out by clicking the link below!
Latest blog posts
