What is included?

• You have 12 months time as of reception of the learning material to learn, do the exam and get your certification
  
• Certification and examination fees are included in the price of the training course. 
• Participants will receive the training course material containing over 450 pages of explanatory information, examples, best practices, exercises, and quizzes. 
  
• An Attestation of Course Completion worth 31 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course. 
• If candidates fail the exam, they can retake it within 12 months following the initial attempt for free.
• + 20% reduction on the first year subscription for our all-in-one ISMS/GRC management solution

Why should you take this training course?

As the impact of security incidents in small and large organizations has increased significantly, so has the demand for ethical hacking. Ethical hacking is one of the most effective tools of safeguarding assets and protecting people and information. Ethical hacking certification is slowly becoming a standard requirement for professionals who want to work in the field of information security. 

A PECB Certified Lead Ethical Hacker certification will help you demonstrate your ability to lawfully assess the security of systems and discover their vulnerabilities. The training course provides information on the latest ethical hacking methods and tools. It also provides a methodology for conducting penetration tests in accordance with standards and best practices, such as the Penetration Testing Execution Standard (PTES) and the Open Source Security Testing Methodology (OSSTMM). 

Understanding hackers’ strategies helps solve security issues and challenges. After attending the training course, you will be able to plan, manage, and perform information security penetration tests.

The PECB Certified Lead Ethical Hacker training course is based on the concept of practicing what you learned. It includes lab sessions and practical examples to help you apply the theory into practice. 

The training course is followed by an exam. If you pass, you can apply for a “PECB Certified Lead Ethical Hacker” credential. For more information about the examination process, please refer to the Examination, Certification, and General Information section below.

Who should attend?

This training course is intended for: 

• Individuals seeking to gain knowledge about the main techniques used to conduct penetration tests 
• Individuals involved in information security seeking to master ethical hacking and penetration testing techniques
• Individuals responsible for the security of information systems, such as information security officers and cybersecurity professionals
• Information security team members seeking to enhance their information security knowledge 
• Managers or expert advisors interested in learning how to manage ethical hacking activities
• Technical experts interested in learning how to plan and perform a penetration test

Training course structure

Module 1: Introduction to ethical hacking

• Training course objectives and structure
• Penetration testing standards, methodologies, and frameworks
• Lab overview
• Fundamental concepts of ethical hacking
• Network fundamentals
• Understanding cryptography
• Relevant trends and technologies
• Kali Linux fundamentals
• Initiation of the penetration test
• Analysis of the penetration testing scope
• Legal implications and contractual agreement

Module 2: Initiating the reconnaissance phase

• Passive reconnaissance
• Active reconnaissance
• Identification of vulnerabilities

Module 3: Initiating the exploitation phase

• Threat model and attack plan
• Evading intrusion detection systems
• Server-side attacks
• Client-side attacks
• Web application attacks
• WIFI attacks
• Privilege escalation
• Pivoting
• File Transfers
• Maintaining access

Module 4: Post-exploitation and reporting

• Cleaning up and destroying artifacts
• Generating a findings report
• Recommendations on mitigating the identified vulnerabilities
• Closing of the training course

Certification Exam

Learning objectives

After completing this training course, you will be able to:

• Master the concepts, methods, and techniques used by cybersecurity organizations and ethical hackers to conduct penetration tests
• Acknowledge the correlation between penetration testing methodologies, regulatory frameworks, and standards
• Acquire a comprehensive knowledge of the components and operations of ethical hacking

Examination

The “PECB Certified Lead Ethical Hacker” exam meets all the requirements of the PECB Examination and Certification Program (ECP). It covers the following competency domains:

• Domain 1: Information gathering tools and techniques
• Domain 2: Threat modeling and vulnerability identification
• Domain 3: Exploitation techniques
• Domain 4: Privilege escalation
• Domain 5: Pivoting and file transfers
• Domain 6: Reporting

The PECB Certified Lead Ethical Hacker exam comprises two parts: practical exam and report writing. The practical exam requires the candidate to compromise at least two target machines through penetration testing. The process should be documented in a written report. The PECB Certified Lead Ethical Hacker exam is an open book exam. Candidates are allowed to use training course materials and personal notes during the examination process. 

Duration: 3 hours
Location: Online through the PECB app OR in person in one of the PECB exam centers
Preparation: PECB Exam Preparation Guides
Language: The exam is available in multiple other languages and does not need to be taken in the same language as the training material. Additional time can be requested when your native language is not available in your mother tongue (to be requested by candidates on the exam day)
Retake: In case you fail the exam, you can retake it within 12 months following the initial attempt for free

For specific information about the exam type, languages available, and other details, please visit the List of PECB Exams and the Examination Rules and Policies.

Certification

Upon the successful completion of the exam, you can apply for the “PECB Certified Lead Ethical Hacker” credential, depending on your level of experience, as shown in the table below. You will receive the certificate once you comply with all the relevant educational and professional requirements.

To be considered valid, the penetration testing and cybersecurity experience should include the following:

1. Determining the scope of ethical hacking
2. Defining a penetration testing approach
3. Performing the steps that should be followed during a penetration testing
4. Defining the penetration testing criteria
5. Evaluating penetration test scenarios and treatment options
6. Using the methods that help increase the security of operation systems
7. Reporting the penetration testing results

Note: For more information about ISO/IEC 27005 certifications and the PECB Certification process, please refer to Certification Rules and Policies.

Contact us on [email protected] if you have other questions