8ksec was founded in 2022 by cybersecurity experts with over 10 years of experience in the field. The company was established with a focus on equipping businesses and individuals with the tools and knowledge necessary to address evolving cyber threats.

Our experts possess extensive experience in delivering specialized cybersecurity training and consulting to several commercial and defense organizations across the United States, Europe, and the Middle East and North Africa region. 8ksec is recognized by BlackHat as a trusted Cybersecurity Training Provider, underscoring its growing presence in the industry. To date, we’ve trained over 3,000 professionals across more than 20 countries.

While 8ksec offers a comprehensive range of cybersecurity services, our expertise in mobile security is
particularly distinguished. This specialization is showcased in our best-selling, in-depth courses on mobile OS and application security, covering topics not offered by any other training provider.

This course prepares you for the Certified Mobile Security Engineer (CMSE) certification exam. This comprehensive course equips you with the knowledge and tools to navigate the complex world of mobile application security focusing on iOS and Android platforms. Whether you're a beginner or a seasoned security enthusiast, our fast-paced curriculum, featuring intensive hands-on labs, will empower you to effectively exploit and secure mobile apps.
 

We are bringing an updated version of the course with the latest tools & techniques. The training is based on exploiting vulnerable apps written by the authors, as well as exploiting a wide range of real-world application vulnerabilities. The students will get an in-depth knowledge about the different kinds of vulnerabilities in Mobile applications. The students will also learn how to reverse engineer iOS and Android Apps and system binaries. After the workshop, the students will be able to successfully pentest and secure applications running on iOS and Android platforms

​

Recommended for:
Penetration testers, Mobile developers, Anyone keen to learn mobile application security.

Key takeaways:

• Learn how to set up your own Lab environment for testing

• Learn how to Reverse engineer iOS and Android binaries (Apps and system binaries)

• Get an understanding of the ARM64 Instruction Set

• Learn Device Fingerprinting and Anti-Fraud techniques

• Get an intro to common bug categories like UaF, Heap overflow, etc

• Get PoC applications to perform 1 click exploits on Mobile apps Learn how to debug iOS and Android apps

• Get an intro to common bug various bug categories on Android and iOS systems

• Learn to audit iOS and Android apps for security vulnerabilities

• Understand and bypass anti-debugging and obfuscation techniques 

• Learn manual and automated ways of bypassing exploit mitigations

• Learn to identify vulnerabilities in native as well as Cross-platform apps

• Learn to exploit different iPC mechanisms in iOS and Android applications

• Get a detailed walkthrough on using IDA Pro, Hopper, Ghidra, etc

• Secure Mobile apps by implementing custom solutions Become a Certified Mobile Security Engineer (CMSE)

​

What you get after the training:

• An attempt to CMSE (Certified Mobile Security Engineer) certification exam

• Certificate of completion for the Training program

• Source code for vulnerable applications

• Source code for Exploit PoCs' that can be used for Bug Bounties

• All Frida Scripts used during the course

• Access to Corellium for iOS and Android hands-on for the duration of the course

• Access to cloud instances for the duration of the course

• Slack access for the class and after for regular mobile security discussions

​