# How is the exam?

## Certified Android Penetration Tester Exam <a href="#el_1716196088418_352" id="el_1716196088418_352"></a>

After completing this Android Application Security course or whenever you think you are are ready, there is a possibility to take an exam to become a Certified Android Penetration Tester (CAPT). This exam simulates A Mobile app Pentest, and participants needs to proof they are able to find and exploit vulnerabilities related to the Android Attach Surface and deliver a Pentest Report within 72 hours. You can purchase the exam via the below link:

[Android Application Security Exam](https://academy.mobilehackinglab.com/course/android-appsec-exam)

### Exam details <a href="#el_1716196395530_434" id="el_1716196395530_434"></a>

* **Objective**: Perform a Penetration test against an Android Application called iBank\
  Duration: 72 hours
* **Deliverable: A Penetration Testing Report**, submitted via the exam course form, which is available for 72 hours
* **Find as many vulnerabilities** you can based on the Android Attack Surface, [OWASP Mobile top 10](https://owasp.org/www-project-mobile-top-10/) and [OWASP MASVS](https://mas.owasp.org/MASVS/) (to classify the vulnerabilities)
* **Rate each finding** (from None until Critical). You can use a [CVSS calculator](https://www.first.org/cvss/calculator/3.1) for this.
* **Provide a short remediation** for each finding

<img src="https://lwfiles.mycourse.app/63942c32c9a203516ce07c09-public/0873322b4875de8dc65a0d0a70b1144e.png" alt="" width="375">

### Exam Report template <a href="#el_1716196597339_472" id="el_1716196597339_472"></a>

{% embed url="<https://lwfiles.mycourse.app/63942c32c9a203516ce07c09-public/publicFiles/1-MHL%20-%20Mobile%20App%20Penetration%20Test%20Report.docx>" %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://eldeim.gitbook.io/brain_fuck/notes/certifications/eastereggs/mobile-hacking-lab/capt-android-penetration-tester/how-is-the-exam.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.