CPSA 5 Days
The CPSA is the first exam in CREST’s penetration testing pathway. It covers the core knowledge and skills needed to assess common network services and operating systems.
The course covers:
- Core Technical Skills – OS fingerprinting, cryptography and network mapping
- Information Gathering & Open Source – Google Hacking and DNS checks
- Networking Equipment – configuration analysis and networking protocols
- Windows and Unix Security Assessments – common vulnerabilities and patch management
- Web Testing Techniques – fuzzing, CRLF and Session ID attacks
CRT 5 Days
On Samurai’s intensive CREST Registered Tester (CRT) course, you will be immersed in the knowledge, tools and techniques obtained by our penetration testers and university academics through their years of industry and teaching experience. All of Samurai’s instructors hold CREST CRT, giving them an in-depth understanding of what is required to pass this demanding exam first time.
This is a five day live online course which prepares you for the CREST Register Tester (CRT) exams. Training is provided by practising penetration testers who are CRT certified. All our trainers have extensive experience delivering cybersecurity courses in top UK universities, as well as performing penetration testing as their core job role in Samurai. The mix of academic teaching and real-world experience with CREST accredited penetration testers gives us the ability to get you through these CREST exams successfully.
Our purpose-built testing virtual environment
Included in the course is 4 weeks of access to our purpose-built penetration testing environment. This has been designed, as closely as we can, to replicate the experience you will get when taking the CRT practical exam. The vulnerabilities, exploits and deployment methods can be paralleled with those of the exam, and with a mix of both internal infrastructure and web application vulnerabilities, we have the bases covered. In addition, we are constantly adding and updating the environment with new machines and vulnerabilities to allow your testing prowess to progress beyond CRT.
A basic understanding of computer networking and TCP/IP is required, for example how IP addressing and subnet masks work and how network ports and services operate. Moderate experience of the Linux command line is expected also. If you intend to take the CRT exam, you will need to pass CPSA first, however, this is not a prerequisite for this course.
About the exam
The CREST Registered Tester exam is a practical assessment, where you will be expected to find vulnerabilities across network, application and database technologies. The exam is designed to test your theoretical and practical knowledge of penetration testing methodology and skills against networks, hosts and applications. Passing the CRT exam also means you can act as a CHECK team member as part of a CHECK accredited penetration testing company, hugely increasing your employability.
Typically CRT has a high failure rate, not just because of its difficultly, but because the exam time is brief. You will not have time to frequently look up command syntax, or refer to the documentation to determine the correct tools to answer each question. The commands, tools, syntax, switches and options need to be very familiar to you, so you can determine the answers quickly and the first time. Once you get behind in the exam, it is hard to get back on track. This is why our Samurai Dojo (a custom-built penetration testing environment) is crucial; it is created to simulate the environment you be using in the exam. We recommend at least 75hrs working in the environment, completing all the tutorials several times while moving from machine to machine, hacking and exploiting ALL the vulnerabilities until it becomes habitual.