News, news analysis, and commentary on the latest trends in cybersecurity technology.
Black Hat Offers Pen-Testing Certification Exam
The new independent exam track at Black Hat USA will feature an opportunity for attendees to take a practical exam to be certified in penetration testing.
Black Hat is partnering with The SecOps Group to launch an independent exam track at next month's Black Hat USA conference.
The exam track will allow attendees to sign up for a certification exam, called Black Hat Certified Pentester (BCPen), to demonstrate specific, real-world knowledge of penetration testing. “We are aiming to provide an authentic and credible certification that is up-to-date and represents real-life business risks,” says Sumit "Sid" Siddharth, CEO of The SecOps Group.
Other certification exams may be added to the track in the future.
The BCPen exam covers a wide variety of topics covering the application and infrastructure security domains, such as network pen testing, Active Directory pen testing, Web and API pen testing, and Linux and cloud security topics, says Siddharth. According to the Black Hat website, the practical exam will be split into two parts, with the Web Hacking and Infrastructure Hacking sections carrying equal weight.
Attendees will be expected to demonstrate their practical knowledge of pen testing by identifying and exploiting security vulnerabilities in a hack-lab environment set up to mimic real-life scenarios. The exam will follow the format of a capture-the-flag hackathon. Exam candidates will need to capture flags as they proceed through the "course," identify various vulnerabilities, and define mitigation strategies.
The exam, categorized at an intermediate level, is suitable for candidates with two-plus years of professional experience in pen testing or bug bounty hunting, Siddharth says.
Attendees must bring their own laptops and can use any hacking tools of their choice to accomplish the exam's required tasks. The seven-hour practical exam will be available once a day (starting at 9 a.m. PT) during Black Hat USA in Las Vegas, Aug. 5-8.
Read more about:
Black Hat NewsAbout the Author
You May Also Like
How to Evaluate Hybrid-Cloud Network Policies and Enhance Security
September 18, 2024DORA and PCI DSS 4.0: Scale Your Mainframe Security Strategy Among Evolving Regulations
September 26, 2024Harnessing the Power of Automation to Boost Enterprise Cybersecurity
October 3, 202410 Emerging Vulnerabilities Every Enterprise Should Know
October 30, 2024
State of AI in Cybersecurity: Beyond the Hype
October 30, 2024[Virtual Event] The Essential Guide to Cloud Management
October 17, 2024Black Hat Europe - December 9-12 - Learn More
December 10, 2024SecTor - Canada's IT Security Conference Oct 22-24 - Learn More
October 22, 2024