Pentesting Exploits Noted In Smartphones

Take your skills as an Android penetration tester to the next level by exploring actively exploited security threats and vulnerabilities on the Android platform.

Axolotl-text Axolotl-face

Your Comprehensive Training Journey

Using our Axolotl test application, created specifically for this course, you will practice building your own "attacker" application designed to exploit each discovered vulnerability. Real-world scenarios will illustrate the connection between theoretical knowledge and real-world attack strategies, equipping you with the skills to identify and exploit Android application weaknesses.

Your Comprehensive Training Journey
Intent Mechanics

Explore `getIntent()`, Browsable Intents, NFC tag exploits, and MIME-type hijacking.

Unexported Content Providers

Abuse `grantUriPermissions` in ways typical testing overlooks.

WebView Vulnerabilities

Understand JavaScript Bridge threats, file access tricks, and Cross-Origin policy flaws.

Custom Permissions

Delve into custom permission structures for exploitation scenarios.

Loading Custom DEX Files

Dynamically inject malicious code into target apps to bypass security measures.

Instructor

Your Instructor - Ken Gannon / 伊藤 剣

CEO of Malicious Erection LLC

As a seasoned penetration tester with over a decade of experience, I specialize in mobile application security. My accomplishments include:

• Obtaining multiple CVEs related to mobile applications

• Ranking among the top 10 bug bounty contributors for the Samsung Bug Bounty program in 2021

• Successfully exploiting the Xiaomi 13 Pro at Pwn2Own 2023

• Successfully compromising the Samsung S24 at Pwn2Own 2024

In addition to my mobile application expertise, I hold various security certifications, including the OffSec OSCE3. Now, I'm dedicated to sharing my knowledge with students seeking to enhance their penetration testing skills in the mobile security domain.

Ready to take your Android penetration testing skills to the next level?

Our course is availalbe on Udemy! Check it out by clicking the link below!

Latest blog posts