banner

Intro

Welcome back to the series on Offensive Security Training Opportunities in 2025. In Part 1, I covered general pentesting training platforms, certifications, and courses that will help you get a foothold in the field or sharpen your skills as a pentester.

In this second installment, we’ll focus on training resources dedicated to web, API, and mobile application security. While some of the courses included in this list are suitable for beginners, it’s recommended to start with the foundational material before diving into the more specialized topics.

This post is Part 2 of the Offensive Security Training Opportunities in 2025. You can find the other posts in the links below:

Disclaimer: The opinions stated in this article are solely my own and do not necessarily reflect those of my employer or other affiliations I have/had. Next to that, courses are not listed in a specific order (this is no ranking by any means). Just because a course is listed in my post does not mean I have actively taken or bought the course, although I have participated in many of these and plan on taking more from this list.

TL;DR

If you are only interested in a summary, I have included a table at the end of every chapter with the necessary information.

Web (& API) Pentesting

Web and API training courses are valuable for pentesters looking to specialize in application security or expand beyond general infrastructure testing. This list includes hands-on labs, structured courses, and certification options that emphasize real-world attack scenarios and modern web technologies. Although some of them are beginner-friendly, a solid understanding of basic pentesting concepts is recommended before diving into these topics.

PortSwigger

“The best-in-class software and learning for security engineers and penetration testers”.

Portswigger Academy

PortSwigger Academy offers free course content on web application vulnerability topics including iterative labs to complete. The content is continuously updated, with new topics/labs are added regularly.

Cost

Free

Burp Suite Certified Professional (BSCP)

Based on the topics covered in their Academy, PortSwigger offers a standalone web application pentester certification. The exam is pretty hard giving you only 4 hours to completely pwn 2 web applications; however, no report is needed. It is recommended that you complete all practitioner level labs in the academy and do their practice exam. This is a must have for any web application penetration tester!

Cost

$90 for 1 exam voucher

Hack The Box

Via their academy platform HTB offers 2 web focused certifications:

HTB Certified Web Exploitation Specialist (CWES)

The CWES (FKA Certified Bug Bounty Hunter - CBBH) is an entry-level / intermediate web pentesting certification. It focuses on technical competency in the web application penetration testing and bug bounty domains. It focuses on black-box testing techniques. Course completion is required to start the exam.

Cost

To access the CWES course, only the Silver subscription is required. This costs €410/year (excl. VAT), including 1 exam voucher + 1 free retake

HTB Certified Web Exploitation Expert (CWEE)

The CWEE is an advanced web pentesting certification. It covers more advanced web attacks and also focuses more on white-box techniques. Course completion is required to start the exam.

Cost

To access the CWEE course, a gold subscription is required. This costs €1.055/year (excl. VAT), including 1 exam voucher + 1 free retake

INE Security

As part of their cyber training offering, INE offers the following web training + certifications:

INE Security Web Application Penetration tester (eWPT)

The eWPT covers essential web vulnerabilities and how to exploit them. This is assessed in a multiple-choice exam, in which you must conduct tests in a hands-on lab and then answer questions within 10 hours.

Cost

$599 for 3 months of premium pass* access + 1 exam attempt + 1 free retake. Afterwards, it’s $749 for the Premium pass annually. The premium pass gives access to INE’s entire content library.

INE Security Web Application Penetration Tester eXtreme (eWPTX)

The eWPTX continues where the eWPT left off. Covering more advanced techniques in the web application security domain focusing on topics such as WAF evasion and custom exploit development. The eWPTX is INE’s most advanced web penetration tester certification.

Cost

$599 for 3 months of premium pass* access + 1 exam attempt + 1 free retake. Afterwards, it’s $749 for the Premium pass annually. The premium pass gives access to INE’s entire content library.

OffSec

OffSec currently offers 2 web pentesting trainings/certifications:

Offensive Security Web Assessor (OSWA)

The OSWA covers foundational skills necessary to execute professional web application assessments. It covers essential techniques for identifying and exploiting XSS, SQL Injection, SSRF, and more. The course is geared towards entry-level to intermediate web attacks in black-box fashion.

Cost

The course is available in different pricing:

  • Standalone course: including 1 exam attempt, including 90 days lab access ($1.749)
  • Learn One annual subscription: including fundamental courses, KLCP and OSWP ($2.749)
  • Learn Unlimited annual subscription: including access to all of OffSec courses and unlimited exam attempts ($6.099)

Offensive Security Web Expert (OSWE)

The OSWE covers advanced web attacks and exploitation. The certification focuses on white-box web application testing and vulnerability exploitation, where chaining multiple vulnerabilities together is needed to pass the 48 hours practical exam.

Cost

The course is available in different pricing:

  • Standalone course: including 1 exam attempt, including 90 days lab access ($1.749)
  • Learn One annual subscription: including fundamental courses, KLCP and OSWP ($2.749)
  • Learn Unlimited annual subscription: including access to all of OffSec courses and unlimited exam attempts ($6.099)

Synacktiv

Synacktiv is a cybersecurity company founded by two IT security experts from France. It has grown into one of the established names in the field. They only recently added live/virtual trainings to their portfolio. Their onsite trainings are delivered in Paris and in French; however, their online sessions are taught in English. You can find their training schedule on their training page.

Attacking Web Applications

During this five-day training, participants will study the functioning of the security mechanisms implemented in recent web applications. The various exercises resulting from the feedback of our experts will allow them to refine their intrusion methods for the exploitation of complex vulnerabilities. Finally, learners will be able to understand the specificity of Java, PHP, Python and ASP.NET languages and frameworks, using dedicated modules.

Cost

€4.500* excl. VAT for 5 day training online (English) or in-person (currently only in Paris and in French)

* cost is based on other 5 day trainings listed on their platform.

Practical Web 0-Day Hunting

During this five-day course, you will acquire the skills necessary to identify complex vulnerabilities within the source code of Java, PHP and .NET applications. Based on many practical cases on popular frameworks such as Spring or Symfony, participants will learn how to optimize their research using static and dynamic analysis tools. It is recommended to have a solid understanding of Web application technologies and vulnerabilities before enrolling in the course.

Cost

€4.500* excl. VAT for 5 day training online (English) or in-person (currently only in Paris and in French)

* cost is based on other 5 day trainings listed on their platform.

APISEC University

Training provider focusing purely on API Security, instructed by Corey J. Ball (known author of Hacking API’s) . They offer multiple free API security courses on their website.

API Security (ASCP)

The API penetration testing course providing hands-on training, focusing on techniques to identify and address API specific vulnerabilities. The exam consists of 2 API-driven applications which have to be exploited and reported.

Cost

Course material is free, The exam costs $450 + 1 free retake

Agarri.fr

Mastering Burp Suite 100% Hands-on

This training is offered by Nicolas Grégoire, an official Burp Suite Pro trainer. He will teach you how to master Burp Suite Pro in in-person or online training format training for 4 consecutive days. The training is regularly scheduled at security conferences and by Nicolas himself. It’s offered in French and English. This training does not include a certification exam.

Cost

The training pack normally costs €3.133. However, they regularly offer early bird discounts. Private training options are also available.

Overview

Training NameCertification NameVendorTraining FormatCertificationLevelCost (excl. VAT)InfoLink
PortSwigger AcademyBurp Suite Certiied Practitioner (BSCP)PortswiggerOnline LabsProctored exam, 4 hours, Hands-on LabIntermediateFree, Exam: $90Course and labs are free, Exam attempt cost $90Course Link
Web Penetration Tester Job-Role PathHTB Certified Web Exploitation Specialist (CWES)Hack The BoxOn-Demand course, LabsNon-proctored exam, 7 days, Hands-on Lab + reportEntry-Level / Intermediate€410Annual subscription, 1 exam attempt + retake, 100% course completion requiredCourse Link
Senior Web Penetration Tester Job-Role PathHTB Certified Web Exploitatin Expert (CWEE)Hack The BoxOn-Demand course, LabsNon-proctored exam, 10 days, Hands-on Lab + reportExpert€1.055Annual subscription, 1 exam attempt + retake, 100% course completion requiredCourse Link
Web Application Penetration Testing Professional Learning PathWeb Application Penetration Tester (eWPT)INE SecurityOn-Demand course, videos, labsNon-proctored exam, 10 hours, Multiple choice, Hands-on LabEntry-level$5993 Month access 1 exam attempt + retakeCourse Link
Advanced Web Application Penetration TestingWeb Application Penetration Tester eXtreme (eWPTX)INE SecurityOn-Demand course, videos, labsNon-proctored exam, 7 days (+ 7 days), Hands-on Lab + reportIntermediate$5993 Month access 1 exam attempt + retakeCourse Link
WEB-200: Foundational Web Application Assessments with Kali LinuxOffSec Web Assessor (OSWA)OffSecOn-Demand course, LabsProctored exam, 24 hours (+24 hours), Hands-On Lab + reportIntermediate$1.7493 month lab access 1 exam attemptCourse Link
WEB-300: Advanced Web Attacks and ExploitationOffSec Web Expert (OSWE)OffSecOn-Demand course, LabsProctored exam, 48 hours (+24 hours), Hands-On Lab + reportExpert$1.7493 month lab access 1 exam attemptCourse Link
Attacking Web ApplicationsXSynacktivLive in-person/virtualNoIntermediate€4.5005 day in-person (French) or virtual course (English)Course Link
Practical Web 0-day huntingXSynacktivLive in-person/virtualNoIntermediate / Expert€4.5005 day in-person (French) or virtual course (English)Course Link
API Penetration Testing CourseAPI Security Certified ProfessionalAPISEC UniversityOn-Demand course, LabsNon-proctored exam, 12 hours, Hands-on LabIntermediateFree, Exam $450Course is Free, $450 Exam attempt + 1 free retakeCourse Link
Mastering Burp Suite ProXAgarri.frLive in-person/virtualNoIntermediate / Expert€3.1334 day in-person or virtual courseCourse Link

Mobile Pentesting

These trainings are ideal for pentesters or developers who want to expand into mobile security testing. The resources in this section will help you understand common vulnerabilities, mobile-specific attack surfaces, and secure development practices.

INE Security

The INE security training curriculum currently holds one mobile penetration testing course / certification.

Mobile Application Penetration Tester (eMAPT)

INE recently revamped their mobile security certification. The training now covers both Android and iOS platforms, whereas their previous course focused only on Android. The curriculum takes you from the fundamentals of how mobile applications work through to exploiting common vulnerabilities in mobile environments. The exam has shifted to a multiple-choice format with a hands-on lab.

Cost

$599 for 3 months of premium pass* access + 1 exam attempt + 1 free retake. Afterwards, it’s $749 for the Premium pass annually. The premium pass gives access to INE’s entire content library.

Mobile Hacking Lab

Unlock the world of mobile security with Mobile Hacking Lab’ comprehensive mobile hacking courses, available online, including free options for beginners. Their curriculum is designed to offer practical, hands-on experience in mobile security, preparing you for real-world challenges. Whether you’re starting or advancing your skills, our courses provide the tools you need to succeed in the fast-evolving digital landscape. They offer exclusively mobile trainings, and you can find their full catalog on their courses page.

Certified Android Penetration Tester (CAPT)

A completely free, self-paced training designed to help you become a Certified Android Penetration Tester (CAPT). The course covers core aspects of Android app security and gives you the option to take the CAPT exam upon completion. You can purchase additional labs to enhance and complement the learning environment.

Cost

The course content is free. Basic Lab subscription costs 20€/month. The certification attempt costs €229.

Certified iOS Penetration Tester (CIPT)

A completely free, self-paced training designed to guide learners toward becoming a Certified iOS Penetration Tester (CIPT). The course covers the essentials of iOS application security through practical lessons and assignments. After completing the training, you can take the CIPT exam to earn certification. You can purchase additional labs to enhance and complement the learning environment.

Cost

The course content is free. Basic Lab subscription costs 20€/month. The certification attempt costs €229.

Android Userland Fuzzing & Exploitation

This hands-on course teaches ARM/arm64 basics, Android native reverse-engineering, how to identify functions and build fuzzing harnesses (including structure-aware/libprotobuf fuzzing), crash analysis and exploit development, covering modern memory-corruption types and mitigation bypasses like ASLR and NX. The course includes an exam + certification.

Cost

The Training is available in 3 formulas:

  • €1.428 for 30 day lab access + life time access to course material + 1 exam attempt
  • €1.760 for 60 day lab access + life time access to course material + 1 exam attempt
  • €2.074 for 90 day lab access + life time access to course material + 1 exam attempt

Android Kernel Fuzzing & Exploitation

This hands-on course teaches Android kernel fundamentals (building and emulating a kernel, memory management, allocators and drivers), kernel driver development, fuzzing techniques and how to build full-chain exploits for real CVEs. At the moment of writing this post, the course is in limited pre-sale and includes unlimited lab time until all course videos are fully live.

Cost

The course comes with 90 days lab access + life time access to course material + 1 exam attempt for €2.500.

Synacktiv

The Synacktiv training catalog currently features one offensive mobile penetration testing course.

Attacking Android Applications

Discover methodologies and techniques for analyzing Android applications. You will study architecture, entry points, static and dynamic analysis, and master Android pentesting methodologies. This course is targeted for entry-level mobile pentesters.

Cost

The cost of their 2 day training offerings is not posted on their website. It’s €4.500* excl. VAT for 5 day training online (English) or in-person (currently only in Paris and in French)

SANS

The most elite training provider when it comes down to security trainings, however also the most expensive (by far). They offer a wide security training curriculum, from theoretical to very hands-on trainings. Always taught live in-person all over the world. Although their trainings are very expensive, they do offer student/facilitator programs which you can apply for to enter the training at a more affordable price, but still pricy. They have some of the best instructors at their disposal. If you ever have the opportunity to do a SANS course, by having your employer pay for it, it can be worth it.

SEC575 GIAC Mobile Device Security Analyst (GMOB)

One of the coolest SANS courses is authored and instructed by my former colleague Jeroen Beckers, who is also a co-author of the OWASP MASVS. It focuses on both iOS and Android platforms. This could be the best mobile security course out there.

Cost

The in-person training costs €8.230 + €905 for the on-demand bundle. (or $8.780 + $999) Totaling €9.135 (or $9.779) (excl. VAT).

The OnDemand bundle grants 4 months access and costs $8.780 (excl. VAT)

The exam costs $999 (excl. VAT).

Overview

Training NameCertification NameVendorTraining FormatCertificationLevelCostInfoLink
The Mobile Application Penetration Testing Professional pathINE Security Mobile Application Penetratoin Tester (eMAPT)INE SecurityOn-Demand course, LabsNon-proctored exam, 7 days (+7 days), Hands-on Lab + reportEntry-Level / Intermediate$5993 Month access 1 exam attempt + retakeCourse Link
Android Application Security CourseCertified Android Penetration Tester (CAPT)Mobile Hacking LabOn-Demand course, LabsNon-proctored exam, 72 hours, Hands-on Lab + reportIntermediateCourse: free, Exam: €229Labs can be acquired separately as of 20€/monthCourse Link Certification Link
iOS Application SecurityCertified iOS Penetration Tester (CIPT)Mobile Hacking LabOn-Demand course, LabsNon-proctored exam, 72 hours, Hands-on Lab + reportIntermediateCourse: free, Exam: €229Labs can be acquired separately as of 20€/monthCourse Link Certification Link
Android Userland Fuzzing & ExploitationCertified Android Exploit Developer (CAED)Mobile Hacking LabOn-Demand course, Labs, also available live in-personNon-proctored exam, 72 hours, Hands-on LabIntermediate / Expert€1.428 - €2.074Lifetime course access + 30-90 days lab accessCourse Link
Android Kernel Fuzzing & ExploitationCertified Android Security Researcher (CASR)Mobile Hacking LabOn-Demand course, Labs, also available live in-personNon-proctored exam, 72 hours, Hands-on LabExpert€2.500Lifetime course access, Labs currently freeCourse Link
Attacking Android ApplicationsXSynacktivLive in-person/virtualNoEntry-Level€4.5004 day in-person (French) or virtual course (English)Course Link
SEC575: iOS and Android Application Security Analysis and Penetration TestingGIAC Mobile Device Security Analyst (GMOB)SANSLive in-person/virtualProctored exam, 2 hours, multiple choiceExpert€9.135 or $9.779 + $999 (exam)6 day in-person or virtual training + 4 Months OnDemand bundle[Course Link](https://www.sans.org/cyber-security-courses/ios-android-application-security-analysis-penetration-testing/ Certification Link

Footnote

The trainings listed here are based on publicly available information as of October 2025, and prices or details may change over time.

If you know of other web, API, or mobile security trainings that deserve a mention, feel free to reach out. I’d love to include them in future updates or upcoming parts of the series.

Additional Resources