8kSec
CASE Certification Logo
CASE CERTIFICATION

Certified Android Security Engineer

Prove your expertise in Android application exploitation, reverse engineering, and platform security.

24-Hour Exam
Corellium Lab Environment

Overview

The Certified Android Security Engineer (CASE) Certification offers you the ultimate opportunity to showcase your skills in Android application exploitation. Tailored for experienced mobile developers and security professionals, this certification is your definitive benchmark in the Android ecosystem.

You'll be tasked with identifying Android-specific vulnerabilities and exploiting them in real-world scenarios. Success is measured by your practical ability to craft complete, functional exploits.

Who Should Take This

  • Security professionals with Android expertise
  • Android developers seeking security validation
  • Penetration testers specializing in Android
  • Application security consultants
  • Individuals proving Android security expertise

Benefits

Enhanced Expertise

Demonstrates deep understanding of Android application security and platform internals.

Career Opportunities

Opens doors to roles such as Android security engineer, app security consultant, and penetration tester.

Salary Boost

Correlates with increased earning potential due to specialized skill validation.

Industry Recognition

Signifies your commitment to the field, earning recognition from peers and employers.

Risk Mitigation

Help organizations identify and address vulnerabilities in their Android applications.

Better Security Practices

Equips you with the latest best practices for robust Android security.

Exam Objectives

1

Android App Analysis: Analyze and dissect Android applications and system binaries to understand their inner workings.

2

Attack Surface Identification: Identify and describe the attack surface in Android, covering both Userland and platform vulnerabilities.

3

Security Mitigations: Understand various security mitigations implemented in Android Userland and the platform.

4

Android Permission Concepts: Explain the concepts and workings of the Android permission model.

5

Android IPC: Comprehend and differentiate between various IPC mechanisms in Android.

6

ARM64 and Android Security: Exhibit deep understanding of the ARM64 instruction set and its relevance to Android security.

7

Categorizing App Bugs: Identify and categorize common bug types found in Android applications.

8

Security Assessment: Perform security audits on Android apps to discover potential vulnerabilities.

9

Anti-Debugging Bypass: Apply techniques to bypass anti-debugging and code obfuscation methods in Android apps.

10

Reverse Engineering Proficiency: Showcase expertise in using tools such as Ghidra, Hopper, and Frida.

Exam Format

24 hrs

Exam Duration

Report

Final Deliverable

The CASE Exam sets the industry standard with a unique evaluation of your practical capabilities. Authentic scenarios involving 5 levels of varying difficulty will challenge your skills in reverse engineering, pivoting, and exploiting Android applications, libraries, and platform components.

Passing Criteria: Your deliverable is a detailed report including fully functional proof-of-concept APK binaries and daemons, reviewed by a skilled team of industry experts.

Certificate: Successful candidates are awarded the 8kSec Certified Android Security Engineer certification, showcasing proficiency in Android security and reverse engineering.

Lab Environment

During the exam, you will have access to a dedicated lab environment providing virtualized ARM devices via Corellium for practical evaluations on both iOS and Android ecosystems.

Prerequisites

  • Familiarity with penetration testing engagements
  • Solid grasp of Android application architecture and security mechanisms
  • Experience in vulnerability assessments of mobile applications
  • Competence in manual exploitation
  • Proficiency in Android application reverse engineering

Recommended Training

Practical Android Application Exploitation

Covers reverse engineering of Android binaries and APKs, identifying common bug categories, auditing for security vulnerabilities, and bypassing anti-debugging techniques using tools like Ghidra, Hopper, and Frida.

Learn More

Frequently Asked Questions

Who is this Certification intended for?
The exam is intended for security professionals, Android developers, and anyone interested in proving their expertise in Android security.
Is prior experience required?
Yes. The CASE certification assumes strong hands-on experience in Android application security. This is not an entry-level certification.
How long does it take to prepare?
Preparation time varies based on your individual learning pace. On average, participants spend a few days to several weeks preparing. It is recommended to spend at least 2-3 weeks practicing before attempting the exam.
Is training mandatory before taking the exam?
The certification is currently offered upon successful completion of the accompanying training class.
Do I need to set up my own labs?
No, we will provide you access to our lab environment and an instruction guide during the exam.
How long does it take to get results?
Once you submit your report, a member of our review board will review it and provide results within 3 business days.
Take the Next Step

Ready to Get CASE Certified?

Prove your expertise with an industry-recognized certification from 8kSec.

Register Now View All Certifications