• Classroom
  • Online, Instructor-Led
Course Description

The format is practice the professional security testing methodology for the first half of the class. Once you have practiced this then you will go against a “live” range. The process is as follows: The sample methodology: Information gathering and OSINT Scanning Building a Target Database Enumeration Vulnerability Analysis Exploitation Post exploitation Advanced techniques Data Analysis Report This course covers everything you need to know for a professional security test as well as how to produce the two most important items; the findings and report!

The practical environment ranges progress in difficulty and reflect enterprise network architecture. This environment includes defenses and challenges which you must defeat and overcome. This is not your typical FLAT network! As you progress through the range levels, each encounter will present the top defenses of today and you will learn the best and latest evasion techniques. This training format has helped thousands of penetration testers globally and is proven to be effective! The CAST 611v3 course is 100% hands-on. No course materials or slides to weigh you down. Everything presented in the course is through an enterprise network environment, which must be attacked, exploited, evaded, defended, etc.

Learning Objectives

  •  Information Gathering and OSINT
  •  Scanning
  •  Enumeration
  •  Vulnerability Analysis
  •  Exploitation
  •  Post Exploitation
  •  Advanced Techniques
  •  Data Analysis and Reporting

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Cyber Defense Analysis
  • Cyber Defense Infrastructure Support
  • Cybersecurity Management
  • Exploitation Analysis
  • Threat Analysis


If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.