Register for Waitlist
,
This class if full now. You can register on the wait list to be notified when a seat becomes available.
Certified Penetration tester (CPT) Training
Live Online & Classroom Enterprise Training
Teaches ethical hacking techniques to identify and exploit system vulnerabilities. Focuses on penetration testing methodologies and reporting.
Looking for a private batch ?
REQUEST A CALLBACKNeed help finding the right training?
-
Enterprise Reporting
-
Lifetime Access
-
CloudLabs
-
24x7 Support
-
Real-time code analysis and feedback
What is Certified Penetration tester (CPT) Training about?
What are the objectives of Certified Penetration tester (CPT) Training ?
Who is Certified Penetration tester (CPT) Training for?
What are the prerequisites for Certified Penetration tester (CPT) Training?
Available Training Modes
Live Online Training
10 DaysCourse Outline Expand All
Expand All
- Network fundamentals (OSI/TCP-IP, ports, protocols)
- Cryptography basics (symmetric/asymmetric, hashing, PKI)
- Secure architecture principles (segmentation, least privilege)
- Identity & access management overview (authentication, SSO)
- Security policies, standards and incident lifecycle
- PT types & scope definition (black/white/grey box)
- PT frameworks & standards (OSSTMM, PTES, NIST SP 800-115)
- Rules of engagement & legal/ethical constraints
- Reporting standards (risk rating, evidence, remediation)
- Test planning, scoping and retesting procedures
- Kali installation, persistence and package management
- Kali toolset tour (nmap, Metasploit, Burp, Wireshark)
- Customizing Kali and creating scripts/aliases
- Using Kali for reconnaissance and exploitation workflows
- Safe lab setup (VMs, snapshots, network isolation)
- Threat models and privacy requirements
- Anonymity tools (Tor, VPNs, proxies, I2P)
- OPSEC basics for testers (breadcrumbs, digital footprints)
- Privacy-enhancing technologies (browser hardening, containers)
- Metadata management and secure communications
- Passive reconnaissance (OSINT, public records, WHOIS)
- Active reconnaissance (port scans, banner grabbing)
- DNS enumeration and subdomain discovery
- Web footprinting and application mapping
- Social reconnaissance (LinkedIn, employees, social channels)
- Port scanning strategies and nmap advanced techniques
- Service and version enumeration (banners, HTTP headers)
- Protocol-specific scanning (SMB, LDAP, SNMP, RDP)
- Stealth & timing options, scan evasion techniques
- Scan result validation and false-positive handling
- Vulnerability scanners and configuration (Nessus, OpenVAS)
- Manual verification of automated findings
- Prioritization and CVSS scoring basics
- False positives, safe testing and remediation guidance
- Patch management and continuous assessment strategies
- Common Windows attack vectors (SMB, RDP, PowerShell)
- Linux exploitation primitives (SUID, misconfigurations)
- Privilege escalation initial footholds and exploitation
- Post-exploitation tooling (meterpreter, shell management)
- Evidence collection and clean-up considerations
- Local enumeration techniques (configs, SUID, services)
- Exploiting misconfigurations and weak permissions
- Kernel exploits and exploit mitigation bypasses
- Credential harvesting and token manipulation
- Hardening recommendations to prevent escalation
- AD fundamentals (domains, trusts, authentication flow)
- AD enumeration (LDAP, Kerberos, Group Membership)
- Kerberoasting, AS-REP Roasting and ticket attacks
- Lateral movement via AD abuse (DC shadow, replication)
- AD hardening and detection controls
- Tunnelling techniques (SSH, SOCKS, port-forwarding)
- Proxying and pivot tools (socks proxy, proxychains, metasploit)
- Credential reuse and pass-the-hash/TT support attacks
- Network segmentation bypass strategies
- Persistence across segments and cleanup
- Packet capture fundamentals (pcap, tcpdump, Wireshark)
- DPI concepts and how DPI inspects flows
- Active sniffing attacks (ARP spoofing, MITM)
- SSL/TLS interception and certificate manipulation
- Detection and defensive countermeasures
- IDS/IPS fundamentals and common detection signatures
- Evasion techniques (fragmentation, encoding, timing)
- Firewall rule analysis and policy bypass methods
- Polymorphic payloads and obfuscation strategies
- Logging, detection tuning and remediation recommendations
- DoS/DDoS attack types (volumetric, protocol, application)
- Tools and simulation methods (safe lab testing)
- Mitigation strategies (rate limiting, CDNs, scrubbing)
- Detection and incident response for availability attacks
- Business continuity and capacity planning
- Social engineering theory and human risk factors
- Phishing methods (spear, clone, vishing, smishing)
- Pretexting and physical social engineering (tailgating)
- Designing and running safe social engineering tests
- Awareness training and measurement (simulated phishing)
- Advanced injection attacks (SQL, NoSQL, command injection)
- Auth/authorization weaknesses and logic flaws
- Modern API testing (REST, GraphQL, rate limiting)
- Client-side issues (DOM XSS, CSP bypass, insecure storage)
- Exploit chaining and secure remediation practices
- Wi-Fi fundamentals and 802.11 protocol deep-dive
- Wireless discovery and mapping (wardriving)
- Attacks on Wi-Fi (WEP/WPA/WPA2/WPA3 weaknesses)
- Rogue APs, Evil Twin, and client exploitation
- Wireless hardening and RF site survey basics
- Cloud threat models and shared responsibility
- Cloud discovery and misconfiguration checks (IAM, storage)
- Exploiting identity & API weaknesses (keys, roles)
- Lateral movement between cloud services and tenants
- Cloud-specific remediation and governance controls
- Container fundamentals and Docker architecture
- Image security (scanning, supply chain risks)
- Container escape vectors and runtime hardening
- Orchestration security (Kubernetes basics, RBAC)
- Secure CI/CD and container monitoring practices
- Thick client architecture and communication channels
- Reverse engineering basics (static/dynamic analysis)
- Intercepting and modifying client-server traffic
- Binary modification and local data tampering
- Secure coding and hardening for desktop/mobile clients
Who is the instructor for this training?
The trainer for this Certified Penetration tester (CPT) Training has extensive experience in this domain, including years of experience training & mentoring professionals.
Reviews
Previous
Next
My outlook on training changed completely after attending SpringPeople BPC training. The content, the trainer and infrastructure at SpringPeople were top notch and perfectly in tune with the industry requirements. Regardless to say, training is now something that I look forward to to. Kudos to everyone at SpringPeople!
Shweta Priya
Sony
I attended the 3-day AngularJs training at SpringPeople. The trainer was an industry veteran with vast experience in the subject. Notably, the hands-on training, and the Q&A session stood out. Overall, I found SpringPeople a great place to learn with excellent facilities and great trainers. Would recommend SpringPeople to my colleagues and friends.
Swati Singh
GE
I attended the training on API Design for Mulesoft. The sessions were well planned and value-laden. I benefited immensely from the hands-on experience enabled through virtual labs. I would like to specifically commend the efficiency of the support team who were always available to resolve my concerns.
Nikhil Kohli
Stryker
I attended the jQuery training batch, conducted by Mr. Vijay, an SME who did a thorough coverage of all the essentials. He took us through concepts such as jQuery animations, event handlers, plugins, and jQuery-UI by small programs, very easily. The sessions were useful and well structured. By the end of the training, I was well equipped to develop a SPA on Product Management System. Overall, the learning experience at SpringPeople was great!
Heena Rajan
Mindtree
