Certified Penetration Testing Specialist (HTB CPTS)
HTB Certified Penetration Testing Specialist (HTB CPTS) is a highly hands-on certification that assesses the candidates’ penetration testing skills. HTB Certified Penetration Testing Specialist certification holders will possess technical competency in the ethical hacking and penetration testing domains at an intermediate level.
Training at a glance
Level
Intermediate
Duration
eLearning
Experience
1 year: Penetration Tester
Average Salary
$119,122
Labs
Yes
Level
Intermediate
Duration
eLearning
Experience
1 year: Penetration Tester
Average Salary
$119,122
Labs
Yes
Training Details
This On-Demand product includes HTB Academy and Dedicated Labs.
The HTB Academy allows learners to navigate through Modules, that provide a more guided experience. Modules are broken into parts that include explanations, examples, and assessments.
With the HTB dedicated labs learners utilize virtualized machines that simulate a black-box pentesting experience. Challenges in Dedicated Labs are available in three difficulty levels: easy, medium, and hard. More difficult challenges are worth more points. Dedicated Labs are designed to work like the networks, endpoints, and servers that businesses use, so users can try advanced cyber exploitation techniques.
HTB Certified Penetration Testing Specialist (HTB CPTS) is a highly hands-on certification that assesses the candidates’ penetration testing skills. HTB Certified Penetration Testing Specialist certification holders will possess technical competency in the ethical hacking and penetration testing domains at an intermediate level. They will be able to spot security issues and identify avenues of exploitation that may not be immediately apparent from searching for CVEs or known exploit PoCs. They can also think outside the box, chain multiple vulnerabilities to showcase maximum impact, and actionably help organizations remediate vulnerabilities through commercial-grade pentesting reports.
Key Differentiators
Continuous Evaluation - To be eligible to start the examination process, one must have completed all modules of the "Penetration Tester" job-role path 100% first. Each module in the path comes with its own hands-on skills assessment at the end that students must complete to prove their understanding of the presented topics. The answers to the skills assessment exercises are not provided. Evaluation takes place throughout the journey, not only during the examination!
Hands-on & Real-world Exam Environment - HTB Certified Penetration Testing Specialist (HTB CPTS) candidates will be required to perform actual web, external, and internal penetration testing activities against a real-world Active Directory network. HTB certifications are not based on and do not include multiple-choice questions!
Outside-the-box Thinking & Vulnerability Chaining - HTB Certified Penetration Testing Specialist (HTB CPTS) candidates will be required to think outside the box and chain multiple vulnerabilities to achieve the exam's objectives. Like in real-world engagements, creativity, and in-depth knowledge will be necessary for a successful outcome.
Commercial-grade Report Requirement - Successfully completing all penetration testing activities is not enough to obtain the HTB Certified Penetration Testing Specialist (HTB CPTS) certification. Candidates will also be required to assess the risk at which the tested infrastructure is exposed and compose a commercial-grade report as part of their assessment. HTB Certified Penetration Testing Specialist (HTB CPTS) candidates will have to prove they are market-ready and client-centric professionals.
Seamless Experience Powered By Pwnbox - The entire exam and certification process can be conducted through the candidate's browser, from start to finish. All penetration testing activities can be performed via the provided and in-browser Pwnbox. There are no infrastructural or tool requirements.
Modules
- Penetration Testing Process
- Getting Started
- Network Enumeration with Nmap
- Footprinting
- Information Gathering – Web Edition
- Vulnerability Assessment
- File Transfers
- Shells & Payloads
- Using the Metasploit Framework
- Password Attacks
- Attacking Common Services
- Pivoting, Tunneling, and Port Forwarding
- Active Directory Enumeration Attacks
- Using Web Proxies
- Attacking Web Applications with Ffuf
- Login Brute Forcing
- SQL Injection Fundamentals
- SQLMap Essentials
- Cross-Site Scripting (XSS)
- File Inclusion
- File Upload Attacks
- Command Injections
- Web Attacks
- Attacking common Applications
- Linux Privilege Escalation
- Windows Privilege Escalation
- Documentation & Reporting
- Attacking Enterprise Networks
Knowledge Domains
- Penetration testing processes and methodologies
- Information gathering & reconnaissance techniques
- Attacking Windows & Linux targets
- Active Directory penetration testing
- Web application penetration testing
- Manual & automated exploitation
- Vulnerability assessment
- Pivoting & Lateral Movement
- Post-exploitation enumeration
- Windows & Linux Privilege escalation
- Vulnerability/Risk communication and reporting
- Junior Penetration Testers
- Penetration Testers
- Security Analysts
- Vulnerability Analysts
- Incident Handlers
- IT Security Personnel
The Exam
The candidate will have to perform blackbox web, external and internal penetration testing activities against a real-world Active Directory network hosted in HTB’s infrastructure and accessible via VPN (using Pwnbox or their own local VM). Upon starting the examination process, a letter of engagement will be provided that will clearly state all engagement details, requirements, objectives, and scope. All a candidate needs to perform the required penetration testing activities is a stable internet connection and VPN software. HTB Certified Penetration Testing Specialist is the most up-to-date and applicable certification for Penetration Testers that focuses on both penetration testing and professionally communicating findings.
Upcoming Classes
We Offer More Than Just Hack The Box Training
Our successful training results keep our corporate and military clients returning. That’s because we provide everything you need to succeed. This is true for all of our courses.
Strategic Planning & Project Management
From Lean Six Sigma to Project Management Institute Project Management Professional, Agile and SCRUM, we offer the best-in-class strategic planning and project management training available. Work closely with our seasoned multi-decade project managers.
IT & Cybersecurity
ATA is the leading OffSec and Hack the Box US training provider, and a CompTIA and EC-Council award-winning training partner. We offer the best offensive and defensive cyber training to keep your team ahead of the technology skills curve.
Leadership & Management
Let us teach your team the high-level traits and micro-level tools & strategies of effective 21st-century leadership. Empower your team to play to each others’ strengths, inspire others and build a culture that values communication, authenticity, and community.