Course Information
Registration period
Year-round Recruitment
Course Level
Study Mode
Duration
1 Hour(s) 7 Minute(s)
Language
English
Taught by
Dr. Amar Massoud
Rating
Course Overview
MobSF, MASVS, Secure Coding, Cryptography, Code Tampering, Privacy Controls & Mobile Penetration Testing
In the rapidly evolving mobile threat landscape, securing your apps is no longer optional—it’s essential. This course, “OWASP Top 10 for Mobile Apps – 2025 Edition,” gives you a practical, step-by-step approach to understanding and mitigating the top mobile security risks as defined by the latest OWASP Mobile Top 10 framework.
Whether you’re developing for Android, iOS, or hybrid platforms, this course will help you understand how attackers exploit vulnerabilities—and more importantly, how to prevent them. You’ll walk through each of the OWASP Top 10 Mobile risks including improper credential management, insecure communication, weak authentication, insufficient cryptography, and more.
We’ll guide you through securing mobile applications using real-world examples from our model app: HealthPlus Mobile, a simulated healthcare app designed specifically for this course. You’ll learn how to detect issues using tools like MobSF (Mobile Security Framework), and implement secure coding practices aligned with OWASP MASVS (Mobile Application Security Verification Standard).
This course includes:
In-depth coverage of all OWASP Mobile Top 10 (2025 Edition) categories
Hands-on testing, code analysis, and mitigation strategies
Real-world demonstrations using HealthPlus Mobile
Automated security testing in CI/CD environments
Compliance awareness with GDPR, CCPA, and mobile privacy best practices
Downloadable checklists, templates, and a final case study project
By the end of this course, you’ll be able to:
Identify, assess, and mitigate mobile app vulnerabilities
Use MobSF and OWASP MASVS to evaluate app security
Build more secure, privacy-conscious, and resilient apps
Apply security principles directly into mobile SDLC workflows
Perfect for mobile developers, security testers, DevSecOps engineers, and IT auditors—this course bridges the gap between secure coding and real-world mobile app delivery.
Enroll now to future-proof your mobile development skills with the OWASP Mobile Top 10 (2025 Edition).
Course Content
- 12 section(s)
- 13 lecture(s)
- Section 1 Introduction
- Section 2 M1 – Improper Credential Management
- Section 3 M2 – Insecure Communication
- Section 4 M3 – Inadequate Supply Chain Security
- Section 5 M4 – Insecure Authentication
- Section 6 M5 – Insufficient Cryptography
- Section 7 M6 – Insecure Authorization
- Section 8 M7 – Client Code Quality Issues
- Section 9 M8 – Code Tampering
- Section 10 M9 – Inadequate Privacy Controls
- Section 11 M10 – Insufficient Security Testing
- Section 12 Case Study & Final Project
What You’ll Learn
- Identify and explain each OWASP Mobile Top 10 (2025) security risk in real-world mobile app scenarios., Apply secure coding practices to mitigate vulnerabilities in Android, iOS, and hybrid mobile apps., Perform mobile app security testing using tools like MobSF and align with OWASP MASVS standards., Conduct mobile app risk assessments and build mitigation plans using case studies like HealthPlus Mobile.
Skills covered in this course
Reviews
-
OOdokun E. Haruna
wow great
-
KKhairunnisya Lubis
-
