OBJECTIF

This training is an introduction to the security of Android devices, their applications and the data they contain. In particular, it allows users to learn good use and configuration practices, to discover the internal mechanisms that provide optimal protection for the terminal and data, while demonstrating concrete attacks and how to protect them.

In particular, the objectives of the training are:

• Acquire the good habits of securing Android devices
• Master the advanced features of the Android system
• Ensure the protection of data stored on an Android terminal

REQUIREMENTS

• Basic knowledge of the Android system

GENERAL INFORMATION

• Code: SSA
• Duration: 1 day
• Hours: 8.30am - 5.30pm
• Location: Training Center, North Urban Center

TARGETED AUDIENCE

• • Members of a technical team wishing to discover more about the Android environment
• • Members of an information security team

RESOURCES

• Course Support
• 40% demonstration
• 40% of theory
• 20% of practical exercises

PROGRAM OF TRAINING

• Days 1
• Overview of Android

• Anatomy of a smartphone, a tablet, and associated uses
• History and versions
• Applications and permissions
• Security model
• Structure of an application
• Permissions
• Systems applications
• Apps outside Google Play
• The Android "ROMs"
• "Stock" vs "Custom"
• Copperhead OS
• Android malware
• Creating a malicious APK
• Anti-virus circumvention

• «Root» d’Android

• Mobile Device Management
• Wireless networks
•WiFi attacks
• SSL / TLS Interception Options of development
• encryption
• External storage
• System
• Locking the device
• Mechanisms present
• Attacks against these mechanisms