OWASP Mobile Security Testing Guide Training Course

  1. Web Development Training
  2. OWASP Training
  3. OWASP Mobile Security Testing Guide Training Course

Course Code

owaspmstg

Duration

21 hours (usually 3 days including breaks)

Requirements

  • A general understanding of mobile app development lifecycle
  • Experience in mobile application development, security, and testing

Audience

  • Developers
  • Engineers
  • Architects

Overview

The Mobile Security Testing Guide (MSTG) is a community-led, open-source testing resource that provides a comprehensive guide covering the processes, techniques, and tools used during security testing for mobile applications and services. The Open Web Application Security Project (OWASP) Foundation and its online community continuously develop the MSTG.

This instructor-led, live training (online or onsite) is aimed at developers, engineers, and architects who wish to apply the MSTG testing principles, processes, techniques, and tools to secure their mobile applications and services.

By the end of this training, participants will be able to:

  • Explore testing techniques to strategize an effective security testing implementation in the development lifecycle.
  • Perform testing techniques to test general vulnerabilities and risks in mobile apps.
  • Run various security testing processes to secure their Android and iOS mobile applications.

Format of the Course

  • Interactive lecture and discussion.
  • Lots of exercises and practice.
  • Hands-on implementation in a live-lab environment.

Course Customization Options

  • To request a customized training for this course, please contact us to arrange.

Course Outline

Introduction

Overview of the OWASP Mobile Security Testing Guide

  • Key areas in mobile app security
  • The OWASP Mobile AppSec Verification Standard (MASVS)
  • Navigating the guide
  • Mobile app taxonomy

Understanding Mobile App Security Testing Basics

  • Mobile app security checklist
  • Testing principles
  • Setting testing objectives
  • Development lifecycle security testing

Running General Testing Techniques for Mobile Apps

  • Authentication architectures
  • Testing network and cryptography
  • Testing code quality
  • Tampering and reverse engineering
  • Mobile app user interaction

Exploring Android and iOS Platforms

  • Android platform overview
  • Data storage on Android
  • iOS platform overview
  • Data storage on iOS

Performing Security Testing for Android

  • Android basic security testing
  • Testing data storage
  • Local authentication
  • Android APIs (cryptographic, network, and platform)
  • Code quality and build settings for apps
  • Tampering and reverse engineering
  • Anti-reversing defenses

Performing Security Testing for iOS

  • iOS basic security testing
  • Testing data storage
  • iOS APIs (cryptographic, network, and platform)
  • Code quality and build settings for apps
  • Tampering and reverse engineering
  • Anti-reversing defenses

Contributing to the MSTG Community

  • Reading the MSTG
  • Contribution guide
  • Feature requests and feedback

Summary and Conclusion

Testimonials

★★★★★
★★★★★

Related Categories

OWASP Training CoursesOWASP

Related Courses

Python ProgrammingWebsite Development in PHPDesign Patterns in PHPWeb Application Development in PHPJavaScript - Advanced ProgrammingAdministration with PowershellWeb Security with the OWASP Testing FrameworkWeb Development with Symfony3Web application development with FlaskProgressive Web Apps (PWA)React: Build Highly Interactive Web ApplicationsSecure Developer Java (Inc OWASP)Secure Developer .NET (Inc OWASP)OWASP Top 10OWASP Web Security Testing Guide

Course Discounts

R Programming for Data Analysis

05/18/2021 - 09:30
14 hours
Online3500 EUR 3150 EUR Classroom4100 EUR N/A
Read more

Elasticsearch for Developers

06/29/2021 - 09:30
14 hours
Online3500 EUR 3150 EUR Classroom4100 EUR N/A
Read more

Create OpenStack cloud infrastructure

08/17/2021 - 09:30
14 hours
Online3500 EUR 3150 EUR Classroom4100 EUR N/A
Read more

Turning Data into Intelligent Action with Cortana Intelligence

09/14/2021 - 09:30
28 hours
Online7000 EUR 6300 EUR Classroom8000 EUR N/A
Read more

Managing Business Processes with ProcessMaker

10/14/2021 - 09:30
14 hours
Online3500 EUR 3150 EUR Classroom4100 EUR N/A
Read more

Course Discounts Newsletter

We respect the privacy of your email address. We will not pass on or sell your address to others.
You can always change your preferences or unsubscribe completely.

Some of our clients

is growing fast!

We are looking for a good mixture of IT and soft skills in Luxembourg!

As a NobleProg Trainer you will be responsible for:

  • delivering training and consultancy Worldwide
  • preparing training materials
  • creating new courses outlines
  • delivering consultancy
  • quality management

At the moment we are focusing on the following areas:

  • Statistic, Forecasting, Big Data Analysis, Data Mining, Evolution Alogrithm, Natural Language Processing, Machine Learning (recommender system, neural networks .etc...)
  • SOA, BPM, BPMN
  • Hibernate/Spring, Scala, Spark, jBPM, Drools
  • R, Python
  • Mobile Development (iOS, Android)
  • LAMP, Drupal, Mediawiki, Symfony, MEAN, jQuery
  • You need to have patience and ability to explain to non-technical people

To apply, please create your trainer-profile by going to the link below:

Apply now!

This site in other countries/regions