Certified Penetration Testing Professional (CPENT)

Overview#

Curriculum#

1. Before class

   • Pre-course materials access
   • Foundation concepts review
   • Baseline self-assessment

2. Fundamentals of Penetration Testing

   • Introduction to Penetration Testing
   • Penetration Testing Scoping and Engagement
   • Open Source Intelligence (OSINT)
   • Social Engineering Penetration Testing
   • Network Penetration Testing – External
   • Network Penetration Testing – Internal

3. Advanced Network and Web Application Penetration Testing

   • Network Penetration Testing – Perimeter Devices
   • Web Application Penetration Testing
   • Wireless Penetration Testing
   • Identifying and Exploiting Web Application Vulnerabilities
   • Conducting Advanced Wireless Attacks
   • Hands-on Labs for Network and Web Application Testing

4. Specialized Penetration Testing Areas

   • IoT Penetration Testing
   • OT/SCADA Penetration Testing
   • Cloud Penetration Testing
   • Identifying and Exploiting IoT Vulnerabilities
   • Evaluating Security Risks in SCADA/OT Systems
   • Performing Cloud-Based Attacks and Security Assessments

5. Advanced Exploitation Techniques and Post-Exploitation

   • Binary Analysis and Exploitation
   • Reverse Engineering Techniques
   • Advanced Privilege Escalation
   • Post-Exploitation Tactics and Lateral Movement
   • Maintaining Persistence on Compromised Systems
   • Hands-on Labs for Exploitation and Post-Exploitation

6. Reporting, Compliance, and Professional Best Practices

   • Report Writing and Post Testing Actions
   • Communicating Findings to Stakeholders
   • Mapping Vulnerabilities to Industry Frameworks (MITRE ATT&CK, NIST, ISO 27001)
   • Ethical Considerations in Penetration Testing
   • Final Exam Preparation and Lab Review
   • Course Wrap-Up and Career Guidance

Who Should Attend & Prerequisites#