Review of Mobile App Pentest Certifications
State of Mobile App Certs and My Journey
The landscape of mobile app penetration testing certifications has been evolving rapidly. However, as a beginner to mobile app penetration testing, there isn’t as many resources compared to other domains of offensive security. At the moment, mobile app pentesting is still a niche domain in offsec and is not talked about much.
Recently, I began getting into mobile app pentesting. TCM Academy has a mobile app hacking course with a follow on certification called Practical Junior Mobile Tester (PJMT). This caught my eye as I’ve used TCM in the past but the course and certification is pretty basic. I decided to also do CMPen - Android from The SecOps Group. CMPen is an intermediate mobile app certification and is a notch higher level than PJMT.
CMPEN - Android (SecOps Group)
The CMPEN - Android certification by SecOps Group is a mix between multiple choice and capture the flag. Although the exam is marketed as a “pentest” like PJMT, the exam is a bit more difficult than PJMT and fills in the gaps that were missing on the PJMT exam. The CMPen is 15 questions and require you to answer the question or input a flag. The exam also requires you to have your own setup and tools. They give you a VPN and an APK file then you go to town hacking away.
Also important to note, SecOps Group regularly has sales for their certifications. I was able to take this exam at 70% off (normal price is about 250 euros). During black friday, they have deals up to 90% off their certifications. I recommend anyone new to mobile app testing to take this exam after PJMT.
PJMT from TCM
The Practical Junior Mobile Tester (PJMT) certification from TCM Security is a junior level course and exam. This course walks you through the basics of mobile app testing and gets you familiarized with the tools of the trade. In my opinion, the course is extremely basic and the exam is pretty easy but it’s a good way to pivot into learning mobile apps for beginners. The exam gives you more than enough time to complete. Almost too much. The exam supplies you with an attack box with all the tools you need pre-installed. They will give you a Rules of Engagement letter with the scope and expectations for the “pentest”. There is a bit less directions with the PJMT exam because it’s geared as a “pentest” and not a multiple choice or capture the flag exam with questions and answers. This is pretty unique and I think TCM is doing a good job with that approach. Despite that, the exam was pretty basic and the course will teach you everything you need to pass.
My Review and the Future
The course structure is well-organized, and the practical exam was still pretty rewarding. The basic methodologies provided a decent insight on mobile app penetration testing. However, I felt that the certification could have included more scenarios on the dynamic analysis side of the house and forced you to do more with Frida/Objection.
I would recommend anyone interested in mobile app pentesting and has zero knowledge of mobile apps to take PJMT from TCM and then do CMPEN after. I am currently doing 7asecurity mobile and iot app hacking course. Once I have finish that certification I will also take CMPEN - IOS. 7asecurity is a bit more comprehensive and indepth. Maybe I’ll write a review on it when I’m done. Harhar. Ok that’s all I got. If anyone’s reading this and has any questions on these feel free to ask me on discord.
