Upcoming 7ASecurity Trainings

Highly Practical IT Security Training Courses

We offer multiple training options including: Android, iOS, Node.js, Electron, Secure Development and Security Awareness among other options
If you are interested in private or online training, please contact us to discuss details.

Online Training


Hacking Modern Web Apps

Start Hacking Modern Web Apps using the latest techniques now!

Learn more

Hacking Android, iOS and IoT Apps

Hack Android & iOS mobile apps, get your mobilesec kung-fu to the next level

Learn more

Hacking JavaScript Desktop Apps

Learn about Hacking JavaScript Desktop apps, RCE, Data Exfiltration, XSS and CSP bypasses!

Learn more

Public Training

Upcoming public training courses, social promo sharing welcome:

Public Training for 2022: Conferences & Public Sessions

Dates Where Training Register Promo
May 9 @ 18:00-19:00 CEST BeJS, Brussels [ Online ] Free Workshop: Hacking Modern Web apps with RCE and Prototype pollution Register
May 10 @ 18:00-19:00 CEST BeJS, Brussels [ Online ] Free Workshop: Hacking JavaScript Desktop apps with XSS and RCE Register
May 10-13 @ 10:00-14:00 IST Nullcon [ Online ] Hacking JavaScript Desktop apps: Master the Future of Attack Vectors Register
May 14-15 @ 09:00-18:00 PDT CanSecWest, Vancouver [ Online ] Hacking JavaScript Desktop apps: Master the Future of Attack Vectors Register
May 15-16 @ 09:00-17:00 EDT NorthSec, Montreal, Canada [ Online ] Hacking Modern Web Apps: Master the Future of Attack Vectors Register
May 16-17 @ 09:00-18:00 PDT CanSecWest, Vancouver [ Online ] Hacking Android, iOS and IoT apps by Example Register
May 26 @ 18:00-19:00 CEST Online Workshop Free Workshop: Hacking JavaScript Desktop apps with XSS and RCE Register
June 7-8 @ 9:00-17:00 GMT OWASP Global AppSec Europe [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors Register
June 13-16 @ 14:00-18:00 GMT 44CON, London [ Online ] Hacking JavaScript Desktop apps: Master the Future of Attack Vectors Register
June 20-22 @ 9:00-17:00 KST TyphoonCon, Seoul, South Korea Hacking Android, iOS and IoT apps by Example Register
June 20-23 @ 14:00-18:00 GMT 44CON, London [ Online ] Hacking Android, iOS and IoT apps by Example Register
June 27-28 @ 9:00-17:30 CEST Troopers, Germany [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors Register
June 27-29 Hack In Paris, France Hacking Android, iOS and IoT apps by Example Register
July 19-20 @ 09:00-17:00 CEST x33fcon, Gdynia, Poland Hacking Modern Web apps: Master the Future of Attack Vectors Register
November 15-16 DeepSec, Vienna Hacking Modern Web apps: Master the Future of Attack Vectors Register

Live & Private Training

We offer multiple training options including: Android, iOS, Node.js, Electron, Secure Development and Security Awareness among other options

If you are interested in private or online training, please contact us to discuss details.

Testimonials

After 2 months of intense training on the 7CMP course from 7ASecurity, managed to pass the 48-hour exam and become the first 7ASecurity Certified Mobile Professional! The exam was really demanding but interesting and rewarding at the same time. Many thanks to Abraham who was there to support me throughout the course. The course is 100% hands-on and I highly recommend it to both beginners and experienced mobile application penetration testers.
- Valentinos Chouris Senior Security Consultant at NCC Group | April 21, 2021
Had the opportunity to attend Hacking Modern Desktop Apps course from @7aSecurity at @nullconTrainings...Great labs and scenarios :) Thanks Abraham
- Tushar Kulkarni (@vk_tushar) Mar 5, 2021
Attended the Hacking Modern Desktop Apps training during NULLCON 2021 and I would like to give shout out to Abraham Aranguren and the team at 7ASecurity for creating this excellent course. I really appreciate the amount of effort they have put in creating the course contents and detailed lab guides. If anyone is looking for complete "hands-on" courses with lifetime access to the course materials, do check their trainings https://lnkd.in/garwBAr
- Piyush Saurabh Security Engineer | OSWE, OSCP, CKA, CKAD | Mar 4, 2021
Thanks @7aSecurity for awesome training at @nullcon
- j0lt (@_j0lt) Mar 4, 2021
Last day of the training @nullcon2021 course: Hacking Modern Desktop apps. Thank you, Abraham Aranguren, for making the course complete hands-on, and the content was excellent.
- Rithin Mithra Uppal GXPN | CEH | OCJP | Mar 4, 2021
Just attended 4 days of intense training on Hacking of Modern Desktop Apps, 💪packed with exercises, understanding how to 🤖review modern desktop apps, showcasing Node.js & Electron, by Abraham Aranguren & @a0xnirudh 7ASecurity at NULLCON Online Training November 2020
- Sourov Ghosh Security Consultant at Payatu | Nov 10, 2020
@7aSecurity Have just "finished" a week long OWASPGlobalAppSec training with 7aSecurity and have to say it was a wonderful training. I thought I knew a good deal of NodeJs based frameworks and current attack vectors. Wow was I wrong. The hands on lab training is great!
- Kurtis velarde (@kvad32)
Oct 26, 2020
Part 1 was an excellent course, plus, you get lifetime access to material (including updates) as well as Slack community access for questions. well worth the cost
- Xanthic Xenops, Strategizing Sealion (@bryanbrake)
Oct 24, 2020
Finishing up AppSec Global 2020. Shout out to the 7ASecurity crew (Abraham Aranguren, Anirudh Anand) for a great course on picking apart modern web / desktop apps (Node.js / Electron). Really enjoyed and appreciated the content! Thanks! See everyone next year. :)
- Timothy Wade Office of CTO, Technical Director | Oct 25, 2020
Just completed an EXCELLENT deep dive class on Android Hacking from @7aSecurity. Fantastic teacher, Great content, life time support. Highly recommend!
- st3am3dric3 (@st3am3dric31)
Aug 27, 2020
I had the luck to be able to attend the OWASP Training: "Hacking Modern Web apps: Master the Future of Attack Vectors". It has added value to my web pentesting skills, as I hadn't played much with Node.JS during my road to #OSCP. You can check the trainings on @7aSecurity
- Arnau Estebanell Castellví (@ArnauEstebanell)
Jul 31, 2020
Really enjoyed my Hacking Modern Web Apps course with @7aSecurity as a part of @owasp AppSecDays. Highly recommended!
- Mark Blandford (@markblandford)
Jul 30, 2020
Last month I attended the excellent "Hacking Modern Desktop apps: Master the Future of Attack Vectors" training with Abraham Aranguren from 7ASecurity [...] I have been able to start putting a lot of what was covered in place very quickly and it really has helped to define a solid approach to building a successful AppSec program. [...]
- Jeremy Lawrence Senior Software Engineer at Eckoh | 2 July 2020
@7aSecurity,@owasp I really liked "Hacking Modern desktop apps" training. Thanks you for sharing detailed lab guide + videos :)
- sarvesh kumar pandey (@sarvesh_kpandey) Jun 30, 2020
This course is full of high quality content and the hands-on is 100%. I just did the June @owasp run of this class and it was a big stretch for me. Good thing I have access *for life*! :D Thanks @7aSecurity
- ctlfish (@ctlfish) Jun 25, 2020
Have recently been using the 7A Security mobile course, with a bunch of really great resources! This would definitely be a training course to go to if you are interested in understanding and learning more on mobile security
- Sarah (@G1nGe98) Feb 21, 2020
Had great fun at the Attacking Android and iOS apps workshop hosted by @7aSecurity. Awesome content!
- Wandering Coder (@wrickdev) 11 Feb 2020
Excellent course. I've learned a lot. Thanks @7aSecurity
- D.Manning (@dmann2265) 24 Sep 2019
Anyone who is wanting to learn more about mobile pentesting @7aSecurity has an amazing mobile class. I am about to go wild on some mobile apps this week. #lasconATX
- Andre (@popSh3lls) 24 Oct 2019
@7aSecurity Abraham is killing this....I love the hands on in his masterclass "Attacking Android and IOS apps by example"! #LASCOCATX #OWASP
- CJ (@ITGirl_MsCJ) 22 Oct 2019
If you're going to LASCON, check out this mobile security course. I attended it at OWASP Global Europe. It is very interesting. @7aSecurity
- D.Manning (@dmann2265) 21 Oct 2019

Past Training

Dates Where Training
2022, April 29 @ 09:00-11:00 EDT CarolinaCon, USA [ Online ] Free Workshop: Practical Mobile app attacks by Example
2022, April 29 @ 11:30-12:30 EDT CarolinaCon, USA [ Online ] Free Workshop: Hacking JavaScript Desktop apps with XSS and RCE
2022, March 19 @ 14:00-17:00 GMT Security BSides Dublin, Ireland Workshop: Practical Mobile App Attacks By Example
2022, March 7 @ 11:00-19:00 EST OWASP March Training [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors
2021, November 16-17 @ 09:30 - 18:30 CET DeepSec, Vienna, Austria Hacking Modern Desktop Apps: Master the Future of Attack Vectors
2021, November 15-16 @ 09:00-17:00 EST Hackfest, Quebec City, Canada [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors
2021, November 9-10 @ 09:00-17:00 PST Global AppSec US [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors
2021, October 26-27 @ 9:00-17:00 CDT LASCON, Austin, Texas Hacking Modern Web apps: Master the Future of Attack Vectors
2021, October 13 @ 18:00-19:00 CEST Belgian JavaScript Conference [ Online ] Workshop: Hacking Modern Web apps with RCE and Prototype pollution
2021, October 12 @ 17:00-18:00 CEST Belgian JavaScript Conference [ Online ] Workshop: Hacking Modern Desktop apps with XSS and RCE
2021, October 12 @ 16:00-18:00 MYT/GMT+8 NanoSec Play, Kuala Lumpur [ Online ] Free Workshop: Practical Mobile App Attacks By Example
2021, October 9 @ 08:00-12:00 PDT ShellConLA [ Online ] Workshop: Practical Mobile App Attacks By Example
2021, October 8 Hacktivity, Hungary [ Online ] Workshop: Practical Mobile App Attacks By Example
2021, October 8 @ 14:00-18:00 CEST BruCON, Belgium Workshop: Practical Mobile app attacks by Example
2021, October 1 @ 09:00-16:30 CEST enterJS, Germany [ Online ] Hacking Modern Web Apps: Master the Future of Attack Vectors
2021, September 23-26 @ 10:00 - 14:00 IST Nullcon, Goa [ Online ] Hacking Modern Desktop apps: Master the Future of Attack Vectors
2021, September 23 @ 10:45-11:30 SGT BSides Singapore [ Online ] Workshop: Hacking Modern Desktop apps with XSS and RCE
2021, September 13-16 @ 14:00 - 18:00 GMT 44con London [ Online ] Hacking Modern Desktop apps: Master the Future of Attack Vectors
2021, September 13-16 @ 14:00 - 18:00 GMT 44con London [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors
2021, September 13-16 @ 14:00 - 18:00 GMT 44con London [ Online ] Hacking Android, iOS and IoT apps by Example
2021, September 8-9 @ 10:00-17:00 NPT (GMT+5:45) Threat Con, Nepal [ Online ] Hacking Android, iOS and IoT apps by Example
2021, September 7-8 @ 9:00-17:00 CEST SEC-T, Stockholm, Sweden Hacking Android, iOS and IoT apps by Example
2021, August 2-3 @ 09:00-18:00 PDT Blackhat USA [ Online ] Hacking Modern Desktop apps: Master the Future of Attack Vectors
2021, June 24 @ 12:00-13:00 PDT OWASP Orange County Meetup [ Online ] Free Workshop: Hacking Modern Web apps with RCE and Prototype Pollution
2021, June 15-16 @ 12:00 - 16:00 EDT OWASP Virtual AppSec [ Online ] Hacking Android and IoT apps by Example
2021, June 15-16 @ 12:00 - 16:00 EDT OWASP Virtual AppSec [ Online ] Hacking Modern Desktop apps: Master the Future of Attack Vectors
2021, June 14-17 @ 14:00 - 18:00 GMT 44con London [ Online ] Hacking Android, iOS and IoT apps by Example
2021, June 13 @ 10:00-14:00 EDT CircleCityCon [ Online ] Free Workshop: Practical Mobile app attacks by Example
2021, June 2 @ 12:00-16:00 CEST CISO Platform & SACON [ Online ] Free Workshop: Practical Mobile app attacks by Example
2021, May 27 @ 13:30-14:30 CEST BSides Budapest Workshop: Hacking Modern Desktop apps with XSS and RCE
2021, May 27 @ 09:00-11:00 CEST BSides Budapest Workshop: Practical Mobile app attacks by Example
2021, May 25-26 @ 12:00 - 16:00 EDT OWASP Virtual AppSec [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors
2021, May 25-26 @ 12:00 - 16:00 EDT OWASP Virtual AppSec [ Online ] Hacking iOS and IoT apps by Example
2021, May 12 @ 17:00-18:00 BST 44con [ Online ] Free Workshop: Hacking Modern Desktop apps with XSS and RCE
2021, May 11 @ 15:00-15:45 CEST Oh My H@ck [ Online ] Workshop: Hacking Android & iOS apps with Deep Links and XSS
2021, May 6 @ 17:00-18:00 BST 44con [ Online ] Free Workshop: Hacking Android & iOS apps with Deep Links and XSS
2021, April 29 @ 17:00-18:00 BST 44con [ Online ] Free Workshop: Hacking Modern Web apps with RCE and Prototype Pollution
2021, April 23 @ 09:00 - 11:00 EST CarolinaCon [ Online ] Free Workshop: Practical Mobile app attacks by Example
2021, April 22 @ 16:00 - 17:00 CEST x33fcon [ Online ] Free Workshop: Hacking Android & iOS apps with Deep Links and XSS
2021, April 7 @ 17:00 - 21:00 GMT+3 Application Security Virtual Meetups Free Workshop: Practical Mobile app attacks by Example
2021, March 9-10 @ 12:00 - 16:00 EDT OWASP Virtual AppSec [ Online ] Hacking Android and IoT apps by Example
2021, March 9-10 @ 12:00 - 16:00 EDT OWASP Virtual AppSec [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors
2021, March 1-4 @ 10:00 - 14:00 IST Nullcon, Goa [ Online ] Hacking Modern Desktop apps: Master the Future of Attack Vectors
2021, February 12 (3 hours) HackCon, Oslo, Norway [ Online ] Workshop: Practical Mobile app attacks by Example
2021, February 10-11 @ 8:45 - 17:30 NZDT AppSec New Zealand [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors
2021, February 10-11 @ 8:45 - 17:30 NZDT AppSec New Zealand [ Online ] Hacking Modern Desktop apps: Master the Future of Attack Vectors
2021, February 10-11 @ 8:45 - 17:30 NZDT AppSec New Zealand [ Online ] Hacking Android, iOS and IoT apps by Example
2021, February 5 (1 hour) HackCon, Oslo, Norway [ Online ] Webinar: Hacking modern Desktop apps with XSS and RCE
2021, February 2 @ 17:00 - 18:00 CET TestJS Summit [ Online ] Free Workshop: Hacking Modern Desktop apps with XSS and RCE
2021, February 2 @ 17:00-18:00 CET TestJS Summit [ Online ] Workshop: Hacking Modern Web apps with RCE and Prototype Pollution
2021, January 26-27 @ 17:00 - 21:00 CET Online Training Hacking Android and IoT apps
2021, January 26-27 @ 18:00 - 22:00 CET OWASP Summer of Security Top 5 Re-Run [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors
2021, January 19-20 @ 17:00 - 21:00 CET Online Training Hacking Modern Desktop Apps: Master the Future of Attack Vectors
2020, December 3 (1 day) CIACON [ Online ] Workshop: Practical Mobile app attacks by Example
2020, December 1-4 (4 days) 44con London [ Online ] Hacking Android, iOS and IoT apps by Example
2020, December 1 (1 day) OWASP Czech Day [ Online ] Workshop: Practical Mobile App Attacks By Example
2020, November 26 (1 day) NanoSec Asia [ Online ] Workshop: Practical Mobile App Attacks By Example
2020, November 25 (1 hour) 44con London [ Online ] Free Webinar: Hacking Modern Desktop apps with XSS and RCE
2020, November 23 (1 hour) 44con London [ Online ] Free Webinar: Hacking Modern Web apps with RCE and Prototype Pollution
2020, November 19 (1 hour) 44con London [ Online ] Free Webinar: Practical Mobile App Attacks By Example
2020, November 16-19 (4 days) Hackfest, Quebec City, Canada [ Online ] Hacking Modern Web & Desktop apps: Master the Future of Attack Vectors
2020, November 10-11 @ 4PM CET Online Training Hacking Modern Web apps: Master the Future of Attack Vectors (Part 2)
2020, November 10-11 (2 days) APPDEVCON, Amsterdam, Netherlands Hacking iOS and IoT apps by example
2020, November 7-10 (4 days) Nullcon [ Online ] Hacking Modern Desktop apps: Master the Future of Attack Vectors
2020, November 5-6 @ 4PM CET Online Training Hacking Modern Web apps: Master the Future of Attack Vectors (Part 1)
2020, November 4-5 (2 days) APPDEVCON, Amsterdam, Netherlands Hacking Android and IoT apps by example
2020, October 23 (1 hour) Nullcon [ Online ] Free Webinar: Hacking Modern Desktop apps with XSS and RCE
2020, October 19-23 (5 days) OWASP Virtual Global AppSec 2020 [ Online ] Hacking Modern Web & Desktop apps: Master the Future of Attack Vectors
2020, October 9 (1 day) Shellcon [ Online ] Free Workshop: Practical Mobile App Attacks By Example
2020, September 17 (2 hours) c0c0n [ Online ] Free Workshop: Practical Mobile App Attacks By Example
2020, September 17 (1 hour) x33fcon [ Online ] Free Webinar: Hacking Modern Desktop apps with XSS and RCE
2020, August 29-30 (2 days)
2020, September 5-6 (2 days) 		Shuhari labs [ Online ] Hacking Android and iOS apps by Example
2020, August 27 (1 hour) x33fcon [ Online ] Free Webinar: Hacking Android & iOS apps with Deep Links and XSS
2020, August 25 (1 hour) x33fcon [ Online ] Free Webinar: Hacking Modern Web apps with RCE and Prototype Pollution
2020, August 25-26 (2 days) OWASP Virtual AppSec Days Summer of Security [ Online ] Hacking Android & IoT apps by Example
2020, August 1-4 (4 days) BlackHat, Las Vegas, USA [ Online ] Hacking Modern Web & Desktop apps: Master the Future of Attack Vectors
2020, July 28-29 (2 days) OWASP Virtual AppSec Days Summer of Security [ Online ] Hacking Modern Web apps: Master the Future of Attack Vectors
2020, July 20-22 (3 days) HITB, Singapore [ Online ] Hacking Android, iOS and IoT apps by Example
2020, June 23-24 (2 days) OWASP Virtual AppSec Days Summer of Security [ Online ] Hacking Modern Desktop apps:
Master the Future of Attack Vectors
2020, April 28-29 (2 Days) OWASP Virtual AppSec Days [ Online ] Hacking Android and IoT apps by Example
2019, October 22-23 (2 days) LASCON, Austin, Texas, USA Attacking Android and iOS apps by Example
2019, September 25-26 (2 days) c0c0n, Kochi, India Attacking Android and iOS apps
2019, September 23-25 (3 days) Global AppSec, Amsterdam, Netherlands Attacking Android and iOS apps by Example
Email Twitter Linkedin Youtube Facebook Xing Vk
Free-4-You