The “Penetration Testing with Kali Linux” course is OffSec's basic training program for prospective penetration testers.
The course teaches students how to identify and exploit real-world vulnerabilities in computers, network security, webapplications and basic cloud environments. With an emphasis on hands-on learning, PEN-200 teaches the fundamental technical skills and mindsets required to simulate – and defend against – offensive information security operations. The course is an essential resource for anyone pursuing a career as a security analyst, security specialist, or certified ethical hacker.
PEN-200 covers a variety of topics and attack techniques, including:
- An introduction to cybersecurity and an effective learning strategy to help you get started
- Carrying out enumeration and information gathering, including vulnerability scans
- Understanding encryption and cryptography
- Use of perimeter attacks in web security and client-side attacks, looking in depth at common vulnerabilities such as XSS, command injection, directory traversal, file uploads and SQL injection. We also cover password attacks and how to bypass antivirus programs
- Perform privilege escalation and lateral movement on Windows and Linux, including pivoting and tunneling techniques
- Using Active Directory, attacking Active Directory authentication and lateral movement in Active Directory
- Enumeration and attack on the AWS cloud infrastructure
- Learn how to use commonly used tools and commands in penetration testing, such as Nmap, Metasploit, Burp Suite, Hydra, Nessus, sqlmap and Shellter
PEN-200: The path to OSCP+ certification
PEN-200 is divided into more than 20 modules. Most modules have accompanying videos for visually oriented learners. Most modules include hands-on exercises that allow learners to practice the concepts and theories taught in the module. After mastering all the techniques and skills taught in the modules, learners can move on to the nine challenge labs to practice a combination of skills in a lab that mimics real-world penetration testing. To prepare learners for their OSCP+ exam, three challenge labs have been developed to closely replicate the OSCP+ exam environment.
PEN-200 is suitable for those who wish to pursue a professional career in penetration testing or learn the skills of penetration testers. Before taking this course, we recommend that you gain practical knowledge of Linux and Windows administration, networking and network scripting.