Themabewertung:
  • 0 Bewertung(en) - 0 im Durchschnitt
  • 1
  • 2
  • 3
  • 4
  • 5
Android App Hacking - Black Belt Edition
#1
[Bild: 8c522d98522f92a592b5dfd0a34cdd78.jpg]

Android App Hacking - Black Belt Edition
Last updated 10/2024
Created by Roman Stuehler
MP4 | Video: h264, 1280x720 | Audio: AAC, 44.1 KHz, 2 Ch Level: All | Genre: eLearning | Language: English + subtitle | Duration: 138 Lectures ( 54h 42m ) | Size: 34.5 GB

Becoming the lead expert in android app security



What you'll learn
Deep understanding of the android app structure
How to exploit Activities, BroadcastReceiver and ContentProvider (SQL injection & Path Traversal)
Bypassing Rooting Detection (SMALI and FRIDA)
Bypassing Certificate Pinning (SMALI and FRIDA)
Performing a man-in-the-middle attack
Analyzing-/ Manipulating the network traffic of a mobile app
Creating call- and flow graphs to reverse engineer strong obfuscated apps
Manipulating Java and C/C++ methods (FRIDA & SMALI)
Reading- / Writing SMALI code
Injecting own (custom) code into existing applications
Deep understanding of the android permission model
Modifying games (infinite lives, high score, invisble, invincible) - Writing a trainer
Analzying bluetooth low energy connections
Dealing with different encryption types (e.g. AES)
Deep- / Web- / App-Links (Bug Bounty)
Reversing native libraries with Ghidra
Debugging Java code
Debugging SMALI code (live - with interpreter)
Webvies & JavaScriptInterfaces
XSS / SQL Injection Exploitation

Requirements
Android knowledge is not required (This course teaches everything)
No real smartphone required
Laptop / PC

Description
In this course you will learn absolutely everything about android app hacking. This course teaches you the ethical principles and enables you to become the top expert of your company regarding to app security. We learn really complex attacks in the most funny way that's possible, by hacking a mobile game. Legal note:The game we are going to hack is licensed under the GNU GPL, which means, we are allowed to perform such modifications. Hacking apps without having the permission of the author is strongly forbidden! The things you learn are related to security research. I am teaching you all of this in a legal and ethical way. Course - Structure:In the installation chapter we will analyze different smartphone setups, their strength and their weaknesses. We unlock our device and use certain features to already start hacking our first apps. We will learn how to analyze bluetooth low energy connections and get familiar with the Android Debug Bridge (ADB).We move on to the android app structure. Here we gain a rock solid understanding about the key components of an android app. We will analyze the AndroidManifest.xml and learn how to exploit activities, broadcast receiver and content provider. We will write our own small apps to exploit SQL injections and path traversals.Afterwards we take a deep dive into reverse engineering. We will learn how to decompile an android app and reconstruct the Java code. We will have a look at different decompilers and create flow- and call graphs to deal with highly obfuscated apps. Finally a nice application is waiting for us to practice all the things we have learned so far.Then we have the treasure of this course, the SMALI chapter. SMALI is like an assembly language of an android application and gives us unlimited power in hacking them. We practice our skills by modifying our mobile game to have infinite lives, become invisible or invincible. We add multiple player shots, manipulate the fire rate and many more. In the man-in-the-middle chapter we will learn how to analyze the network traffic of a mobile app. We will gain an understanding about HTTPS and how to analyze these connections. We will learn how certificate pinning works and bypass several different types of it. The last thing that is missing is FRIDA, which is an amazing framework to perform runtime manipulations within an app. We will hook into the pseudorandom number generator (PRNG) to modify a dice application. We will learn how to scan the memory for certain instances and how to interact with the UI thread of an app. We will create new objects and practice all of this by writing our own trainer for a gaming application. The cherry on top will be the analysis of a native c function with Ghidra and the manipulation and modification with FRIDA.After getting through all these chapters you will be the top expert in android app security of your company. Therefore, what you are wainting for? Smile

Who this course is for
Security Analyst / Ethical Hacker
Android App Developer
Bug Bounty Hunter
Everyone who likes to manipulate android apps / games Smile


[Bild: 544961426_android_app_hacking_-_black_belt_edition.jpg]

Download from RapidGator

Download from Keep2Share

Premium Links
Zitieren


Möglicherweise verwandte Themen…
Thema Verfasser Antworten Ansichten Letzter Beitrag
  Six Sigma Green Belt (CSSC) Panter 0 127 16.06.2024, 20:38
Letzter Beitrag: Panter
  Certified Lean Six Sigma Green Belt Training [2022] Panter 0 160 17.08.2023, 00:08
Letzter Beitrag: Panter
  Android App Hacking - Black Belt Edition Panter 0 234 02.11.2022, 15:16
Letzter Beitrag: Panter
  Six Sigma: Certified Lean Six Sigma Green Belt (Accredited) Panter 0 199 18.10.2022, 21:38
Letzter Beitrag: Panter
  White Belt to Blue Belt Panter 0 257 29.05.2022, 10:40
Letzter Beitrag: Panter
  Android App Development with Android Studio | Android Panter 0 297 15.04.2022, 19:27
Letzter Beitrag: Panter

Gehe zu:


Benutzer, die gerade dieses Thema anschauen: 1 Gast/Gäste
Expand chat