Course Foundation (Real-World Pentesting)
The Practical Network Penetration Tester (PNPT) certification is a one-of-a-kind exam that assesses a student's ability to perform a professional-grade external and internal network penetration test. It focuses heavily on OSINT, Active Directory exploitation, and professional reporting, mirroring real-world consulting engagements.
Core Domains
A comprehensive curriculum designed to build job-ready skills:
External Recon & Exploitation
OSINT gathering, subdomain enumeration, and exploiting exposed services like SMB, RDP, and VPNs.
Internal Network Testing
Active Directory exploitation (Kerberoasting, AS-REP roasting), lateral movement, and privilege escalation.
Pivoting & Lateral Movement
SSH tunneling, SOCKS proxies, Chisel/Ligolo-ng, and moving across segmented networks.
Web Application Testing
Exploiting OWASP Top 10 vulnerabilities (SQLi, XSS, SSRF) and API security testing.
Reporting & Professional Skills
Writing professional reports, communicating findings to executives, and delivering live debriefs.
Exam Format
5-Day Exam
120-hour practical exam performing a full penetration test against a simulated enterprise.
Full Scope
Gain initial access, pivot through the network, and compromise Active Directory.
Live Debrief
Submit a professional report and perform a 15-minute live debrief presentation.
Key Considerations
- Prerequisites: Solid knowledge of networking, Linux/Windows, and penetration testing fundamentals.
- Tools: Nmap, Burp Suite, BloodHound, Mimikatz, Metasploit, Chisel/Ligolo-ng.
- Recognition: Highly revered in the industry for mirroring real-world consulting engagements.