DeepSec 2023 Training: Mobile Security Testing Guide Hands-On – Sven Schleier
Software cannot be tested by machines alone. In order to identify security weaknesses, you will need the right toolchain and expertise on how to use the tools. Therefore, we asked Sven Schleier to give you a two-day deep dive into mobile security testing.
Embark on an exciting journey to master the art of hacking mobile apps! Join this course led by Sven Schleier, where you’ll learn how to analyze mobile apps for security vulnerabilities. With dynamic testing, static analysis, and reverse engineering techniques, you’ll uncover the secrets of app attacks. Dive into Android and iOS testing, using virtualized devices provided by Corellium. Each student will get a rooted Android and jail broken iOS instance for the duration of the training and the only pre-requisite is having a laptop with macOS, Windows, or Linux.
Explore topics like dynamic instrumentation, intercepting network traffic, exploiting deep-link vulnerabilities, and many more and unleash the power of tools like Frida, jadx, objection, and Burp Suite for iOS and Android app testing. Regardless if you are a mobile developer, analyst or penetration tester, with hands-on labs, captivating lectures, and exhilarating CTF challenges at the end of each day, you’ll be able to gain expertise in mobile app security and will know how to analyse mobile apps.
Sven is the Technical Director of WithSecure in Singapore, specialized in penetration testing and application security. Next to offensive security engagements he has supported and guided software development projects for Mobile and Web Applications during the whole SDLC to build security in from the start.
Besides his day job, Sven is one of the core project leaders and authors of the OWASP Mobile Security Testing Guide and OWASP Mobile Application Security Verification Standard and has created the OWASP Mobile Hacking Playground. Sven is giving talks and workshops about Mobile Security worldwide to different audiences, ranging from developers to students and penetration testers.