The Intermediate Penetration Testing course focuses on the methodologies and tradecraft used by professional penetration testers operating within legal and ethical boundaries. The course is built around attacker behaviors and techniques while maintaining a strong emphasis on professional testing standards, rules of engagement, and reporting. Students progress through the penetration testing lifecycle, including information gathering, scanning and service enumeration, vulnerability mapping, exploitation of perimeter and internal systems, post-exploitation, and reporting. The course culminates in a six-hour Culmination Exercise (CULEX) requiring students to gain initial access to a target network and maneuver through multiple systems to achieve defined objectives.
Intended Audience: Cyber operators, penetration testers, and security practitioners who possess foundational networking and security knowledge and are ready to develop structured penetration testing skills. This course is intended for students seeking hands-on experience with common tools, methodologies, and workflows used during real-world penetration testing engagements.