: You must write a "malicious" Android app (the PoC) that exploits these vulnerabilities to perform actions like stealing data from the other apps.
Note that the exam format has recently changed. Newer versions (2025 onwards) may include and 2 lab exercises within a 12-hour window on the INE platform, shifting away from the traditional 7-day coding-only format. eMAPT (2).zip
If you are looking for guidance on how to structure your own PoC or understand common exam vulnerabilities, these resources are frequently cited by students: : You must write a "malicious" Android app
The eMAPT exam is unique because it requires you to build an actual Android application rather than a written report. If you are looking for guidance on how
: Many students share their journey and exam logic on platforms like Medium and personal blogs , detailing how they approached the Java/Kotlin coding requirements.
: To pass, you submit your exploit's source code and the compiled .apk file. Key Resources for eMAPT Write-ups
: Repositories such as syselement's eMAPT notes provide Smali and Java code snippets for exploiting specific Android components like BroadcastReceivers .