Training & Certifications

Certified Penetration Testing Professional (C|PENT)

Offered by EC-Council, Certified Penetration Testing Professional (C|PENT) is a multidisciplinary course with extensive hands-on training in a wide range of crucial skills, including advanced Windows attacks, Internet of Things (IoT) and Operational Technology (OT) systems, filtered network bypass techniques, exploit writing, single and double pivoting, advanced privilege escalation, and binary exploitation. The C|PENT training program offered by Multimatics is designed to provide the knowledge and skills needed to perform an effective penetration testing in an enterprise network environment that must be attacked, exploited, evaded, and defended. The training material is prepared based on the latest edition of C|PENT, accompanied by discussions and exercises to work on the questions.

Multimatics is an Authorized Training Center for the Certified Penetration Testing Professional (C|PENT) training and certification program accredited by the EC-Council.

Program Objectives

By the end of the program, participants will be able to:

  • Advanced Windows Attacks
  • Attacking IoT Systems
  • Writing Exploits: Advanced Binary Exploitation
  • Bypassing a Filtered Network
  • Pentesting Operational Technology (OT)
  • Access Hidden Networks with Pivoting
  • Double Pivoting
  • Privilege Escalation
  • Evading Defense Mechanisms
  • Attacking Automation with Scripts
  • Weaponizing Exploits
  • Writing Professional Reports

Target Audience

The program is designed for:

  • Ethical Hackers
  • Penetration Testers
  • Network Server Administrators
  • Firewall Administrators
  • Security Testers
  • System Administrators and Risk Assessment Professionals
  • Cybersecurity Forensic Analyst
  • Cyberthreat Analyst
  • Cloud Security Analyst
  • Information Security Analyst
  • Application Security Analyst
  • Cybersecurity Assurance Engineer
  • Security Operations Center (SOC) Analyst
  • Technical Operations Network Engineer
  • Information Security Engineer
  • Network Security Penetration Tester
  • Network Security Engineer
  • Information Security Architect

Duration

This program is a 5 days of intensive training class.

Method of Delivery

The program provided by Multimatics will be delivered through interactive presentation by professional instructor(s), group debriefs, individual and team exercises, behavior modelling and roleplays, one-to-one and group discussion, case studies, and projects.

Requirements

There are no predefined requirements for those interested in attempting the C|PENT exam.

Examination Format

Participants will take a fully online, remotely proctored performance-based, hands-on C|PENT Exam which is broken into two practical exams of 12-hours. They will be given the option to choose either two 12-hour exams or one 24-hour exam. Participants who successfully passed the exam with 70% will be given an official Certified Penetration Testing Professional (C|PENT) certification from EC-Council. Participants who score more than 90% attain the prestigious LPT (Master) credential.

Program Modules

Module 1: Introduction to Penetration Testing and Methodologies
  1. The Fundamentals of Penetration Testing
  2. Penetration Testing Approaches, Strategies, Methodologies, Techniques, and Various Guidelines
  3. Recommendations for Penetration Testing

Module 2: Penetration Testing Scoping and Engagement

  1. The Different Stages and Elements of Scoping
  2. The Engagement in Penetration Testing

Module 3: Open-Source Intelligence (OSINT)
  1. How to Use Techniques and Tools to Gather Intelligence about the Target from Publicly Available Sources such as the World Wide Web (WWW), through Website Analysis, by Using Tools/Frameworks/Scripts

Module 4: Social Engineering Penetration Testing
  1. Different Social Engineering Techniques
  2. Perform Social Engineering Penetration Testing on a Target Organization

Module 5: Network Penetration Testing – External
  1. Security Concerns
  2. Using Best Practices
  3. Using Access Controls
  4. Behavioral Security Concepts

Module 6: Network Penetration Testing – Internal
  1. How to Implement a Comprehensive Penetration Testing Methodology for Assessing Networks from Insider’s Perspectives

Module 7: Network Penetration Testing – Perimeter Devices
  1. How to Implement a Comprehensive Penetration Testing Methodology for Assessing the Security of Network Perimeter Devices, such as Firewalls, IDS, Routers, and Switches

Module 8: Web Application Penetration Testing
  1. How to Analyze Web Applications for Various Vulnerabilities, Including the Open Web Application Security Project (OWASP) Top 10
  2. Determine the Risk of Exploitation

Module 9: Wireless Penetration Testing
  1. How to Test Various Components of Wireless Networks, such as WLAN, RFID Devices, and NFC Technology Devices

Module 9: Wireless Penetration Testing
  1. How to Test Various Components of Wireless Networks, such as WLAN, RFID Devices, and NFC Technology Devices

Module 10: IoT Penetration Testing
  1. Various Threats to Internet of Things (IoT) Networks
  2. How to Audit Security Controls for Various Inherent IoT Risks

Module 11: OT and SCADA Penetration Testing
  1. OT and SCADA Concepts
  2. The Process of Testing Various Components of OT and SCADA Networks

Module 9: Wireless Penetration Testing
  1. How to Test Various Components of Wireless Networks, such as WLAN, RFID Devices, and NFC Technology Devices

Module 12: Cloud Penetration Testing
  1. Security Threats and Concerns in Cloud Computing
  2. How to Perform Cloud Penetration Testing to Determine the Probability of Exploitation

Module 13: Binary Analysis and Exploitation
  1. Understand the Binary Analysis Methodology and Reverse Engineer Applications to Identify Vulnerable Applications that May Lead to the Exploitation of an Information System

Module 14: Report Writing and Post Testing Actions
  1. How To Document and Analyze the Results of a Penetration Test
  2. Recommend Post-Penetration Test Actions
Scroll to Top