Home About
Services
Consulting and Expertise Security Management Security Governance Business Continuity Security Awareness
Formations
SECURITE OFFENSIVE - ETHICAL HACKING
Cybersecurity Awareness Hacking & Security: Fundamentals Hacking & Security: Advanced Hacking & Security: Expert Certified Ethical Hacker v10 Penetration Testing: Audit Simulation Web Site Audit Social Engineering and Countermeasures Conducting a Security Audit: SI Audit Method Certified Web Application Security Pentester Python for Pentesting Advanced Exploitation with Metasploit Certified of Cloud Security Knowledge Intelligent Android Application Testing Computer Hacking Forensic Investigator v9
INFORENSIQUE
Computer Hacking Forensic Investigator v9 Advanced Forensic Analysis and Incident Response Mobile Device Forensics
MANAGEMENT
ISO 27001: Certified Lead Implementer ISO 27001: Certified Lead Auditor ISO 27005: Certified Risk Manager ISO 27005: Certified Risk Manager + EBIOS Method Certified Information Systems Auditor Certified Information Systems Security Professional Certified Data Protection Officer Certified Information Security Manager ISO 31000: Certified Risk Management ISO/IEC 22301 Certified Lead Auditor ISO/IEC 22301 Certified Lead Implementer ISO/IEC 27032 Certified Cybersecurity Manager ISO/IEC 27034 Certified Lead Auditor ISO/IEC 27034 Certified Lead Implementer ISO/IEC 27035 Lead Incident Manager Certified Lead Pen Test Professional ISO 9001 Certified Lead Auditor ISO 9001 Certified Lead Implementer
SECURITE DEFENSIVE
Android Device Security Awareness >Linux Security Windows Security Network Security Technology Watch Security SIEM Implementation Secure Web Development: Python Session Secure Web Development: PHP Session
Team Contact

Language

FR EN AR
Home / Training / Penetration Testing: Audit Simulation

Penetration Testing: Audit Simulation

Immerse yourself in a realistic PenTest and learn to audit your IS security in real-world situations.

Offensive
Pentest
Practical audit

Objective

This course will teach you how to implement a real PenTest or Penetration Testing audit procedure on your IS. Trainees will be immersed in a practical case as close as possible to a real business situation. Indeed, PenTesting is a highly technical intervention that determines the potential and actual effectiveness of security applied to systems, networks, and information confidentiality.

Specific objectives:

  • Learn to write a professional audit report
  • Experience a real Audit situation

Prerequisites

  • Have attended or have the level of the HSA course

General Information

  • Code: PNT
  • Duration: 5 days
  • Schedule: 8:30 AM - 5:30 PM
  • Location: Training Center, North Urban Center

Target Audience

  • Security consultants
  • Engineers / Technicians
  • System / Network administrators

Resources

  • Course materials
  • 40% demonstration
  • 40% theory
  • 20% practical exercises

Program

  • Day 1
    • Audit methodology
    • Objectives and types of PenTests
    • What is a PenTest?
    • The PenTest cycle
    • Different types of attackers
    • Types of audits (Black Box, White Box, Gray Box)
    • Advantages of PenTesting
    • Limitations of PenTesting
    • Special cases (Denial of Service, Social Engineering)
    • Regulatory aspects
    • Auditor responsibility
    • Common constraints
    • Legislation: legal articles
    • Precautions
    • Key points of the mandate
    • Elements of report writing
    • Importance of the report
    • Composition (General summary, Technical summary)
    • Risk assessment
    • Examples of impacts
    • Putting yourself in the client's shoes
    • Review of main attack techniques and tools used
  • Days 2, 3 and 4
    • Audit simulation on a concrete case
    • Application of methodological and technical tools
    • Realistic business scenario
    • Trainer guidance
    • Exploitation of vulnerabilities
    • Formatting findings for the report
  • Day 5
    • Report preparation
    • Formatting collected information
    • Application of methodology
    • Report writing
    • Overall system security analysis
    • Description of found vulnerabilities
    • Report transmission
    • Necessary precautions
    • Report transmission methodology
    • What to do after transmitting the report?

Do not hesitate to contact our experts for any additional information, free study and calculation of an audit service.

Information security is essential for any business that needs to protect and enhance its information assets.

Contact us