Become a Certified Mobile and Web App Penetration Tester (CMWAPT)

The Certified Mobile and Web App Penetration Tester (CMWAPT) certification path teaches you the skills, tools and techniques required for conducting comprehensive security tests of mobile and Web applications.

9 courses  //   48 videos  //   5 hours of training

Free training week — 700+ on-demand courses and hands-on labs

Certified Mobile and Web App Penetration Tester (CMWAPT) training

This learning path builds your penetration testing skills and prepares you to earn your Certified Mobile and Web App Penetration Tester (CMWAPT) certification. As you progress through nine courses tied to the CMWAPT exam domains, you’ll build your skills around using pentesting methodologies and tools to attack Web and mobile apps and assess their security. Upon completion, you’ll be prepared to earn your CMWAPT certification and validate your pentesting knowledge.

Learning path components

CMWAPT Custom Practice Exam
Practice Exam
CMWAPT Custom Practice Exam

CMWAPT Custom Practice Exam

Prepare for your CMWAPT exam and test your domain knowledge.

Number of questions: 50

CMWAPT Skill Assessment
Assessment
CMWAPT Skill Assessment

CMWAPT Skill Assessment

See how your CMWAPT skills stack up against other professionals in your field.

Number of questions: 20

Purple Team Web Application Security Project
Assessment
Purple Team Web Application Security Project

Purple Team Web Application Security Project

This project contains three labs focused on understanding, exploiting and mitigating a real vulnerability found in a real web application. You'll intercept web traffic with Burp Suite, perform a local file inclusion attack, practice using a static code analyzer, and learn about mitigation approaches and web application firewalls.

Number of questions: 3

Introduction to Web Application Pentesting
Course
Introduction to Web Application Pentesting

Introduction to Web Application Pentesting

Begin your pentesting path with this foundational introduction to Web application pentesting, covering common threats, methodologies and more.

3 videos
19 minutes of training

Target Identification and Application Mapping
Course
Target Identification and Application Mapping

Target Identification and Application Mapping

Take a closer look at target identification and application mapping with this course covering service identification, core defense mechanisms and more. Includes vocabulary and tools.

6 videos
55 minutes of training

Attacking Web Application Access Controls
Course
Attacking Web Application Access Controls

Attacking Web Application Access Controls

Learn to attack web application access controls with this course on attacking access control, attacking authentication, attacking session management and more.

4 videos
28 minutes of training

Injection Attacks
Course
Injection Attacks

Injection Attacks

Learn what you need to know about injecting code or SQL queries into vulnerable applications in order to circumvent access controls. Includes vocabulary and examples.

2 videos
20 minutes of training

Common Attack Methods
Course
Common Attack Methods

Common Attack Methods

Think like a hacker with this course on common attack methods used for pentesting, including attacking Web services, cross-site scripting and exploiting logic flaws.

8 videos
37 minutes of training

Introduction to iOS App Pentesting
Course
Introduction to iOS App Pentesting

Introduction to iOS App Pentesting

Get an introduction to iOS app pentesting with this course covering analyzing an iOS app, binary analysis, iOS app security measures and more.

5 videos
34 minutes of training

iOS App Pentesting Tools and Techniques
Course
iOS App Pentesting Tools and Techniques

iOS App Pentesting Tools and Techniques

Be ready for action with this course on iOS app pentesting tools and techniques. Covers runtime manipulation, insecure data storage, broken cryptography and other ways to get into a target system.

8 videos
44 minutes of training

Introduction to Android App Pentesting
Course
Introduction to Android App Pentesting

Introduction to Android App Pentesting

Prepare for the challenge of Android app pentesting with this introductory course covering reversing Android applications, Drozer and more.

5 videos
20 minutes of training

Android App Pentesting Tools and Techniques
Course
Android App Pentesting Tools and Techniques

Android App Pentesting Tools and Techniques

Dive deeper into Android app pentesting with this course on Android app pentesting tools and techniques. Includes vocabulary, walkthroughs and a close look at the Frida pentesting toolkit.

7 videos
31 minutes of training

 

What you’ll learn.

The CMWAPT certification exam covers eight domains:

  • Mobile and Web application pentesting process and methodology
  • Web application vulnerabilities
  • Web application attacks
  • Android application components
  • Android application attacks
  • iOS application components
  • iOS application attacks
  • Secure coding principles

Who is this for?

A familiarity of penetration testing concepts and a Security+ certification, or equivalent knowledge, are recommended.

This certification path is designed for:

  • Penetration testers
  • Cybersecurity consultants
  • Application developers
  • Web administrators
  • Anyone with a desire to get certified in pentesting mobile and Web applications!

Train on your schedule

Personal
Teams

Infosec Skills subscription

Monthly
Annually
  • 80+ role-based learning paths (Ethical Hacking, Threat Hunting, etc.)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (CISSP, Security+, etc.)
  • Skill assessments
  • Infosec peer community support
  • Create custom learning paths from 100s of courses

Infosec Skills boot camp

Request a quote for pricing

 

Request Quote Browse Boot Camps
  • Exam Pass Guarantee
    If you don’t pass your exam on the first attempt, you'll get a second attempt for free. Includes the ability to re-sit the course for free for up to one year.
  • 100% Satisfaction Guarantee
    If you’re not 100% satisfied with your training at the end of the first day, you may withdraw and enroll in a different online or in-person course.
  • Live, instructor-led training (available in-person or online)
  • 90 day extended access to recordings of daily lessons
  • Certification exam voucher
  • Learn by doing with hundreds of additional hands-on courses and labs Infosec Skills Annual

Infosec Skills subscription

Annual

$599 per learner / year

Request Quote Free Team Trial
  • Team administration and reporting
  • Transferable licenses
  • 80+ role-based learning paths (Ethical Hacking, Threat Hunting, etc.)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (CISSP, Security+, etc.)
  • Skill assessments
  • Create and assign custom learning paths
  • Dedicated client success manager

Infosec Skills boot camp

Request a quote for pricing

 

Request Quote Browse Boot Camps
  • Team boot camp administration and reporting
  • Exam Pass Guarantee
    If you don’t pass your exam on the first attempt, you'll get a second attempt for free. Includes the ability to re-sit the course for free for up to one year.
  • 100% Satisfaction Guarantee
    If you’re not 100% satisfied with your training at the end of the first day, you may withdraw and enroll in a different online or in-person course.
  • Knowledge Transfer Guarantee
    If an employee leaves within three months of obtaining certification, Infosec will train a different employee at the same organization tuition-free for up to one year.
  • Certification exam vouchers
  • Live, instructor-led training (available onsite, in-person or online)
  • 90 days extended access to recordings of daily lessons
  • Build your team's skills with hundreds of additional hands-on courses and labs

Award-winning training that you can trust

Best Software - Highest Satisfaction

Best Software - Highest Satisfaction

Infosec Skills

Best IT Security-related Training Program

Best IT Security-related Training Program

Infosec Skills

Best Cybersecurity Education Provider & Best Security Education Platform

Best Cybersecurity Education Provider & Best Security Education Platform

Infosec Skills

Most Innovative Product - Cybersecurity Training for Infosec Professionals

Most Innovative Product - Cybersecurity Training for Infosec Professionals

Infosec Skills

Global Excellence - Cyber Security Education & Training

Global Excellence - Cyber Security Education & Training

Infosec Skills

Exceptional learning experiences powered by LX Labs cyber expertise

Infosec Skills courses and labs are powered by LX Labs — our elite team of cyber SMEs, learning specialists and community of top-ranked security instructors, published authors and sought-after industry leaders. We rigorously vet all Infosec Skills training resources to guarantee they meet certification and compliance requirements and align with recognized guidelines like the NICE Cybersecurity Workforce Framework.

LX Labs

SC Media names Infosec Skills Best IT Security Training

See for yourself why Infosec Skills leads the cybersecurity training industry.