CPENT: EC-Council Certified Penetration Testing Professional

Course Information

Course Name

CPENT: EC-Council Certified Penetration Testing Professional

Exam code

412-79

Duration

5 Days

Certification

EC-Council Certified Penetration Testing Professional (CPENT)

Overview

The Certified Penetration Testing Professional or C|PENT Certification, for short, re-writes the standards of penetration testing skill development.
If EC-Council’s Certified Penetration Testing Professional (C|PENT) program teaches you how to perform an effective penetration testing in an enterprise network environment that must be attacked, exploited, evaded, and defended. you have only been working in flat networks, C|PENT’s live practice range will teach you to take your skills to the next level by teaching you how to pen test loT systems, OT systems, how to write your own exploits, build your own tools, conduct advanced binaries exploitation, double pivot to access hidden networks, and also customize scripts/exploits to get into the innermost segments of the network.
The heart of the C|PENT course is all about helping you master your pen testing skills by putting them to use on our live cyber ranges. The certified penetration testing ranges were designed to be dynamic in order to give you a real-world training program, so just as targets and technology continue to change in live networks, both the (C|PENT) practice and exam ranges will mimic this reality as our team of engineers continue to add targets and defenses throughout the C|PENT course’s lifetime.

Audience Profile

·   Ethical Hackers

·   Penetration Testers

·   Network Server Administrators

·   Firewall Administrators

·   Security Testers

·   System Administrators and Risk Assessment Professionals

·   Cybersecurity Forensic Analyst

·   Cyberthreat Analyst

·   Cloud Security

·   Analyst Information Security Consultant

·   Application Security Analyst

·   Cybersecurity Assurance Engineer

·   Security Operations Center (SOC) Analyst

·   Technical Operations Network Engineer Information Security Engineer

·   Network Security Penetration Tester

·   Network Security Engineer

·   Information Security Architect

Prerequisites

With EC-Council’s VAPT Track, you can start by acquiring foundational knowledge in cybersecurity with the Essential Series (EIHE, NIDE, and DIFE), followed by the CICT program. Additionally, gain insights into network defense and ethical hacking through the core certifications, i.e., the CIND and the CIEH. After this, you may pursue the WIAHS and then the CIPENT, which can be the last juncture in your journey to excel in VAPT or penetration testing roles.

At Course Completion

·   Advanced Windows Attacks

o   Access active directories. Power your way through network defenses using PowerShell to execute Silver and Gold Ticket and Kerberoasting.

·   Attacking lot Systems

o   CIPENT is the 1st certification in the world to teach loT attacks

·   Writing Exploits: Advanced Binary Exploitation

o   Go beyond advanced application security testing techniques and experience the thrill of exploiting vulnerabilities in flawed binaries across 32- and 64-bit code challenges.

·   Bypassing a Filtered Network

o   Unlike flat networks that most certifications train in, access web applications and extract data through a series of filtered networks with CIPENT.

·   Pentesting Operational Technology (OT)

o   CIPENT is the world’s first pen testing certification that allows you to intercept Modbus communication protocol and communicate between PLC and its slave nodes.

·   Access Hidden Networks with Pivoting

o   Learn lateral movement and what it means to pivot through filtered networks.

·   Double Pivoting

o   If you think pivoting is hard, wait until you try double pivoting!

·   Privilege Escalation

o   Gain root access by mastering privilege escalation techniques.

·   Evading Defense Mechanisms

o   We don’t just teach you to write exploits; we teach you to how to bypass protections.

·   Attack Automation with Scripts

o   A key skill for most employers, we’ll teach you to go beyond tools!

·   Weaponize Your Exploits

o   Pentesting tools not enough for you? Here’s your chance to learn to build your own armory.

·   Write Professional Reports

o   Learn classic pen testing skills from experts.

Course Outline

Course Outline

Module 01: Introduction to Penetration Testing

Module 02: Penetration Testing Scoping and Engagement

Module 03: Open Source Intelligence (OSINT)

Module 04: Social Engineering Penetration Testing

Module 05: Network Penetration Testing – External

Module 06: Network Penetration Testing– Internal

Module 07: Network Penetration Testing – Perimeter Devices

Module 08: Web Application Penetration Testing

Module 09: Wireless Penetration Testing

Module 10: IoT Penetration Testing

Module 11: OT/SCADA Penetration Testing

Module 12: Cloud Penetration Testing

Module 13: Binary Analysis and Exploitation

Module 14: Report Writing and Post Testing Actions

Single Exam, Dual Certification

CPENT is a fully online, remotely proctored practical exam that challenges candidates through a grueling 24-hour performance-based, hands-on exam. The exam is broken into 2 practical exams of 12-hours each that will test your perseverance and focus by forcing you to outdo yourself with each new challenge. Candidates have the option to choose either 2 12-hour exams or one 24-hour exam.

Candidates who score more than 70% will earn the CPENT certification. Candidates who score more than 90% attain the prestigious LPT (Master) credential!

Exam features:

·       Choose your challenge! Either two 12-Hour sessions or a single 24-Hour exam!

·       EC-Council specialists proctor the entire exam – Validity is not in question.

·       Score at least 70% and become a CPENT

·       Score at least 90% and earn the highly regarded LPT (Master) designation!

To be a LPT (Master) means that you can find chinks in the armor of defense-in-depth network security models with the help of network pivoting, making exploit codes work in your favor, or by writing Bash, Python, Perl, and Ruby scripts. The live range CPENT exam demands that you think on your feet, be creative in your approach, and not rely on the conventional techniques.

Outsmarting and out maneuvering the adversary is what sets you apart from the crowd. The CPENT’s hands-on exam offers a challenge like no other by simulating a complex network in real time. This experience will test your perseverance and focus by forcing you to outdo yourself with each new challenge.

CPENT Benefits

·       100% mapped with the NICE framework.

·       100% methodology-based penetration testing program.

·       Blends both manual and automated penetration testing approaches.

·       Designed with the most common penetration testing practices offered by the best service providers.

·       Maps to all major Job Portals. Role Title: Penetration Tester and Security Analyst.

·       Provides strong reporting writing guidance.

·       Gives a real-world experience through an Advanced Penetration Testing Range.

·       Provides candidates with standard Pen test for use in the field.

All EC-Council certification courses are conducted by certified trainers from Iverson.

Digital Methods acts as the official training partner and assists with program consultation, registration, coordination, scheduling, and administrative arrangements to ensure a smooth and professionally managed training experience.