Next boot camp starts soon. Enroll now.

Penetration Testing Training Boot Camp

Transform your career in 10 days

Infosec's Penetration Testing Boot Camp offers a deep dive into ethical hacking. This 10-day intensive boot camp is not just about theory — it’s about hands-on examples of penetration testing, the methodologies needed to perform them, and the cutting-edge tools required to get the job done. Whether you’re a security analyst looking to add offensive skills or an up-and-coming red teamer looking to round out your toolbox, this boot camp is designed so you can walk out the door with highly in-demand hacking skills — and up to four certifications!

4.70 (8755 ratings)

View Pricing
Affirm Financing available
Exam Pass Guarantee

Course essentials

Boot camp at a glance

  • Method

    Live online, in-person, team onsite

  • Duration

    10 days

  • Experience

    1-3 years

  • Average salary

    $103,000

  • Meets 8570.1

    DoD information assurance requirements

Ready to discuss your training goals? We've got you covered.

Complete the form and book a meeting with a member of our team to explore your learning opportunities.

This is where the error message would go.

Step 1

Finish

Thanks! We look forward to meeting with you!

Book a Meeting

What you'll learn

Training overview

Exam Pass Guarantee

Infosec’s penetration testing training — delivered in a 10-day boot camp — is the information security industry’s most comprehensive penetration testing program available.

You’ll learn up-to-date skills around penetration testing, from the use of network reconnaissance tools to the writing of custom zero-day buffer overflow exploits. This course aims to help you master a repeatable, documentable penetration testing methodology you can use in an ethical penetration testing or hacking situation. This Penetration Testing Training Boot Camp will have you walk out the door with hacking skills that are highly in demand, as well as up to four certifications:

  • Certified Ethical Hacker (CEH)
  • CompTIA PenTest+
  • Certified Penetration Tester (CPT)
  • Certified Expert Penetration Tester (CEPT)
Learn More

Award-winning training you can trust

What's included

Everything you need to know

Certification Logo
  • 90-day extended access to Boot Camp components, including class recordings
  • 100% Satisfaction Guarantee
  • Exam Pass Guarantee
  • Exam voucher
  • Free 90-day Infosec Skills subscription (access to 1,400+ additional courses and labs)
  • Hands-on cyber ranges and labs
  • Knowledge Transfer Guarantee
  • Onsite proctoring of exam
  • Pre-study learning path
  • Unlimited practice exam attempts
View Pricing

What makes the Infosec Penetration Testing prep course different?

You can rest assured that the Penetration Testing training materials are fully updated and synced with the latest version of the exam. In addition, you’ll gain access to a Penetration Testing prep course the moment you enroll, so you can prepare for and get the most out of your boot camp.

 

With 20 years of training experience, we stand by our Penetration Testing training with an Exam Pass Guarantee. This means if you don’t pass the exam on the first attempt, we’ll pay for your second exam at no additional cost to you!

Learn More

Before your boot camp

Prerequisites

To ensure you get the most out of this pentest training, you should have the following:

  • A firm understanding of the Windows Operating System
  • Exposure to the Linux Operating System or other Unix-based OS
  • A firm understanding of the TCP/IP protocols
  • Exposure to network reconnaissance and associated tools (nmap, nessus, netcat)
  • Programming knowledge is NOT required
  • Desire to learn about ethical hacking and get great penetration testing training
Enroll Now

Syllabus

Training schedule

Day 1
Morning session

Testing methodologies

  • Security testing methodologies
  • The ethical hacking profession
  • Planning and scoping an engagement
  • Legal and compliance considerations
  • Ethical hacking methodologies
  • Tools of the trade
  • Linux overview
  • Passive intelligence gathering
  • Abusing DNS
  • Abusing SNMP
  • Security testing methodologies
Afternoon session

Testing methodologies continued

Evening session

Testing methodologies continued

Schedule may vary from class to class

Day 2
Morning session

Network scanning and service identification

  • Understanding TCP packets and structuresPassive network discovery and scanning
  • TCP scanning
  • Using differences in RFC implementations to your advantage
  • Scanning through firewalls
  • How to prevent the discovery of your reconnaissance activities
  • Using zombies to mask network scanning
  • Avoiding IDS/IPS detection
  • Proper identification of services
  • Vulnerability identification
Afternoon session

Network scanning and service identification continued

Evening session

Network scanning and service identification continued

Schedule may vary from class to class

Day 3
Morning session

Exploiting vulnerabilities and social engineering techniques

  • Vulnerability life cycles
  • Types of vulnerabilities
  • Flaws in encryption
  • Configuration errors
  • Buffer overflows
  • Stack overflows
  • Vulnerability mapping
  • Exploit utilization and delivery methods
  • Client-side exploits
Afternoon session

Exploiting vulnerabilities and social engineering techniques continued

Evening session

Exploiting vulnerabilities and social engineering techniques continued

Schedule may vary from class to class

Day 4
Morning session

SQL injection and attacks

  • Use of Trojans
  • Redirecting ports to thwart firewall rules
  • Avoiding anti-virus detection
  • Lateral movement and persistence
  • Use of keyloggers
  • IDS operations and avoidance
  • Encrypting your communications
  • Protocol abuse for covert communications
  • And many more!
Afternoon session

SQL injection and attacks continued

Evening session

SQL injection and attacks continued

Schedule may vary from class to class

Day 5
Morning session

Scripts for ethical hacking and mitigation strategies

  • Sniffing in different environments
  • Attack sniffers
  • Man-in-the-middle attacks
  • Wireless networking
  • Shared key authentication weaknesses
  • WEP/WPA/WPA2 cracking
  • Anti-forensics
Afternoon session

Scripts for ethical hacking and mitigation strategies continued

Evening session

Scripts for ethical hacking and mitigation strategies continued

Schedule may vary from class to class

Day 6
Morning session

Advanced recon

  • Advanced recon
  • Blinding IDSs
  • Vulnerability mapping
Afternoon session

Advanced recon continued

Evening session

Schedule may vary from class to class

Day 7
Morning session

x86 assembly for exploit development

  • x86 assembly for exploit development
  • Finding vulnerabilities with debuggers
  • Reversing win32 applications with IDA
  • Fuzzing/fault injection
  • Memory architecture and stack-based overflows
Afternoon session

x86 assembly for exploit development continued

Evening session

Schedule may vary from class to class

Day 8
Morning session

SEH exploits

  • SEH exploits
  • Return oriented programming
  • Writing shellcode
  • Egghunters
  • Restricted character set exploitation
  • Attacking format strings
  • Payloads
Afternoon session

SEH exploits continued

Evening session

Schedule may vary from class to class

Day 9
Morning session

Metasploit payloads

  • Metasploit payloads
  • Advanced metasploit
  • Compressors and encryptors
  • Advanced client side exploits
  • Attacking network-based protocols
Afternoon session

Metasploit payloads continued

Evening session

Metasploit payloads continued

Schedule may vary from class to class

Day 10
Morning session

Exploiting web apps

  • Exploiting web apps
  • Web application hacking
  • SQL injection in MS SQL
  • SQL injection in MySQL
  • CD & DVD-ROM protections
Afternoon session

Exploiting web apps continued

Evening session

Schedule may vary from class to class

Download Full Syllabus

Guaranteed results

Our boot camp guarantees

Exam Pass Guarantee

If you don’t pass your exam on the first attempt, get a second attempt for free. Includes the ability to re-sit the course for free for up to one year (does not apply to CMMC-AB boot camps).

100% Satisfaction Guarantee

If you’re not 100% satisfied with your training at the end of the first day, you may withdraw and enroll in a different online or in-person course.

Knowledge Transfer Guarantee

If an employee leaves within three months of obtaining certification, Infosec will train a different employee at the same organization tuition-free for up to one year.

View Pricing

Unlock team training discounts

If you’re like many of our clients, employee certification is more than a goal — it’s a business requirement. Connect with our team to learn more about our training discounts.

Request Team Pricing

FAQ

Frequently asked questions

What is penetration testing?
Penetration testing, often called "pentesting" or "ethical hacking," is like a treasure hunt within the digital world. It involves cybersecurity experts (the good guys!) systematically poking, prodding and attacking an organization's systems to find and exploit vulnerabilities, just as a malicious hacker would. But here's the twist — it's all done with permission and for a noble cause: strengthening the system's defenses. It's all about finding the weaknesses before the bad actors do, making the digital world safer.
How do I become a penetration tester?

Becoming a penetration tester is like signing up for an exciting digital adventure. It typically starts with a strong foundation in computer systems and networks. And it’s best to learn once you’ve got a good grasp of the Windows Operating System, Linus Operating System, TCP/IP protocols and network reconnaissance tools like Nmap, Nessus and Netcat.

Many successful pentesters have learned the ropes through self-study, online courses or boot camps (like ours). Certifications like Certified Ethical Hacker (CEH) and CompTIA PenTest+ are valuable stepping stones, but remember, the learning never stops! The world of cybersecurity is always evolving, so continuous learning and curiosity are your best companions on this journey.

Is penetration testing a rewarding career?
Absolutely. Penetration testing is not just a job: it's a mission. As a penetration tester, you're on the front lines of the digital world, protecting vital systems and data from cyber threats. And let's not forget the thrill of the hunt — there's nothing quite like the satisfaction of uncovering a hidden vulnerability. Plus, with a high demand for cybersecurity professionals, the opportunities for growth and advancement are vast. So yes, whether the mission drives you, the intellectual challenge or the career opportunities (or all three), penetration testing can be an incredibly rewarding career.
What is network penetration testing?
Imagine a sprawling digital city made of interconnected networks. Network penetration testing is like a guided tour of this city, aiming to find any unlocked doors or weak walls. In more technical terms, it involves simulating attacks on a company's network (the interconnected systems and infrastructure) to identify vulnerabilities. This could include anything from servers and network services to routers and firewalls. The goal? To spot and fix the weaknesses, ensuring that the digital city stays secure from cyber threats.

You're in good company

CY

I have never had a better experience in any previous training. The instructor gave the information needed for the test and also shared his real-world experience to bring it together. I would not hesitate recommending this class to anyone interested in CEH.

Chris Young, Maintech

JK

I thoroughly enjoyed the Ethical Hacking class. I would venture to say it is one of the best technical classes I have ever attended. I feel very confident that I will be able to take my learning experience and be better able to defend our company assets.

Jeremy Kicklighter, ACI Worldwide

SF

The course materials were excellent. The class format was fantastic. The instructor not only prepared us for the examination but also spent a considerable amount of time in learning practical skills for the real world.

Stephen Field, Thomas Compliance Associates, Inc.

Enroll in a boot camp

January 22, 2024 - February 02, 2024

Online only

Book Now

April 08, 2024 - April 19, 2024

Online only

Book Now

Explore our top boot camps

More learning opportunities

Most popular

CompTIA Security+ Training Boot Camp Boot camp

CompTIA Security+ Training Boot Camp

This five-day boot camp equips you with the knowledge and hands-on exercises needed to get CompTIA Security+ certified. Infosec’s Security+ Training Boot Camps are led by cybersecurity experts that will teach you everything you need to know to pass the Security+ exam — guaranteed. Infosec is an authorized training partner of CompTIA, and our training has won numerous awards, including the CompTIA Outstanding Partner Award.
Learn More

#1 FOR BEGINNERS

Cisco CCNA Associate & CyberOps Associate Training Boot Camp with Dual Certification Boot camp

Cisco CCNA Associate & CyberOps Associate Training Boot Camp with Dual Certification

This Cisco CCNA Associate & CyberOps Associate Training Boot Camp with Dual Certification is designed to enhance network engineers’ and administrators’ skills with comprehensive knowledge of Cisco router and switch configuration. By enrolling in our boot camp, you gain hands-on experience, practical skills and the preparation needed to earn two valuable Cisco certifications.
Learn More

Most requested

(ISC)² CISSP® Training Boot Camp Boot camp

(ISC)² CISSP® Training Boot Camp

Our CISSP Boot Camp is designed to tackle the ever-evolving challenges of information security, and our intensive program provides you with the skills needed to excel. We cover the broad range of knowledge required for the CISSP certification and fully prepare you to pass the CISSP exam.

Learn More