CREST Registered Penetration Tester

5 Day Course
Hands On

Book Now - 3 Delivery Methods Available:

Classroom Virtual Classroom Private Group - Virtual Self-Paced Online


The CRT course leads to the CREST Registered Tester (CRT) examination, which is recognised by the NCSC as providing the minimum standard for CHECK Team Member status and is designed to assess a candidate’s ability to carry out basic vulnerability assessment and penetration testing tasks.

The CREST Registered Tester exam is a practical assessment, where the candidate will be expected to find known vulnerabilities across common network, application and database technologies aimed at assessing the candidate’s technical knowledge of penetration testing methodology and skills against reference networks, hosts and applications.

A pass at CPSA level is a pre-requisite for the Registered Tester examination and success at both CPSA and CRT will confer the CREST Registered status to the individual. An individual passing the CPSA but failing the practical element, which is this CRT exam, will still retain the CPSA Practitioner certificate and may apply to re-take the CRT practical exam at a later date, when they feel that they are ready to do so. Individuals who pass the CRT exam can request that their information be provided to the NCSC to be considered for CHECK Team Member Status. CPSA is available as a separate course.

Target Audience

  • Aspiring information security personnel who wish to be part of a PenTest team
  • System administrators who are responding to attacks
  • Incident handlers who wish to expand their knowledge into Penetration Testing and Digital Forensics
  • Government departments who wish to raise and baseline skills across all security teams
  • Law enforcement officers or detectives who want to expand their investigative skills
  • Information security managers who would like to brush up on the latest techniques and processes inorder to understand information security implications
  • Anyone meeting the pre-requisites who is considering a career in Penetration Testing

Additional Information

The course PenTesting tools and VMs all pre-downloaded and provided on a USB stick (over 70Gb). These are yours to keep so you can re-run the course as many times as you wish or use them for future reference.

Training Partners

We work with the following best of breed training partners using our bulk buying power to bring you a wider range of dates, locations and prices.


Hide all

Core Technical Skills (5 topics)

  • Network Mapping & Target Identification
  • Interpreting Tool Output
  • OS Fingerprinting
  • Application Fingerprinting and Evaluating Unknown Services
  • File System Permissions

Background Information Gathering & Open Source (1 topic)

  • Domain Name Server (DNS)

Networking Equipment (1 topic)

  • Management Protocols

Microsoft Windows Security Assessment (5 topics)

  • Domain Reconnaissance
  • User Enumeration
  • Active Directory
  • Windows Vulnerabilities
  • Common Windows Applications

Unix Security Assessment (7 topics)

  • User Enumeration
  • Unix Vulnerabilities
  • FTP
  • Sendmail / SMTP
  • Network File System (NFS)
  • R* services
  • X11

Web Technologies (4 topics)

  • Web Server Operation
  • Web Servers & their Flaws
  • Web Protocols
  • Web Application Serers

Web Testing Techniques (4 topics)

  • Web Site Structure Discovery
  • Cross Site Scripting Attacks
  • SQL Injection
  • Parameter Manipulation

Databases (5 topics)

  • Microsoft SQL Server
  • Oracle RDBMS
  • Web / App / Database Connectivity
  • RPC services
  • SSH

Preparation for CRT exam (2 topics)

  • CRT - Examination Guidance
  • CRT - Practice Exam


A pass at CPSA level is a pre-requisite for the Registered Tester examination.

Additional Learning

The courses below may help you meet the knowledge level required to take this course.

Scheduled Dates

Please select from the dates below to make an enquiry or booking.


Different pricing structures are available including special offers. These include early bird, late availability, multi-place, corporate volume and self-funding rates. Please arrange a discussion with a training advisor to discover your most cost effective option.

Code Location Duration Price May Jun Jul Aug Sep Oct
Later scheduled dates may be available for this course.

Course PDF


Share this Course


Recommend this Course