This course is optimized for students just starting out in exploit development or security engineering for Android on ARM.

Our course begins with a detailed introduction to the Arm 64-bit processor and assembly language, with labs covering more advanced shellcoding techniques targeted specifically at Android. Students will deploy their own shellcode and learn how to debug and develop complex functionality for use in their own exploits.

The course covers the Android security model, filesystem and permission model, and how to perform invasive security auditing of Android user-mode applications, including labs on how to intercept encrypted network traffic and hook vulnerable functions in managed applications to look for exploitable vulnerabilities in the app.

We cover the theory and practice of patch analysis and reverse engineering using Ghidra to reverse-engineer a patch for an Android 64-bit native application and identify the security vulnerability that the patch fixes. We will learn how to identify similar vulnerabilities in binary analysis and use a debugger to instrument and test the unpatched binary to trigger the bug.

Key takeaways:

• Develop and debug exploits on real Android devices

• Construct your own ARM 64-bit shellcode

• Turn multiple N-days into exploits

• Write and chain multiple exploits together

• Exploit a heap vulnerability to get on the device

• Build and chain a kernel exploit to elevate privileges

​

What you get after the training:

• itrainsec shareable certificate, signed by the trainer (add it to your LinkedIn profile) 

• Course materials 

• Practical skill to elevate your career to the next level 

• After-training consultancy and support 

• Expansion of your professional network in the cybersecurity industry 

• Stronger cybersecurity posture of your business