45+ InfoSec Courses at SANS Network Security 2018 in Las Vegas! Save up to $200 thru 8/22.

Penetration Testing Courses

SANS' Pen Test Training Courses are created to help professionals deliver high-value pen tests. Here's what you can expect from the SANS Pen Test Curriculum:

  • Different platforms - Take a network, web app, mobile or wireless Pen Test course.
  • A comprehensive curriculum - SANS Pen Test Curriculum spans beginner, advanced and specialist pen test skillsets.
  • Cutting edge - SANS updates and refreshes Pen Test Training content regularly.
  • Built by experts - All training content is created by a panel of pen test experts.
  • Expert Instructors - SANS Pen Test Instructors who deliver training are globally respected, real-world practitioners.
  • Extensive courseware - Students receive a library of books and resources.
  • Flexible access - SANS offers different training methods.

Founded over 25 years ago, SANS now counts Fortune 500 enterprises, government departments and military bodies among its growing list of partners. We operate across more than 30 countries and have over 125,000 alumni.

Click here to jump to our full Pen Test course list

Why Choose A SANS Penetration Testing Course?

SANS' Pen Test Training Courses are developed by professionals who have earned their stripes on the discipline's front line. Our Courses are focused on equipping students with the technical skills, knowledge and tools they need to make a difference, as soon as they get back to the office.

SANS Training is hands on. Courses feature in-depth lab experiments, simulations, cryptographic challenges and war games.

These encompass:

  • Modelling activities of real-world attackers
  • Finding vulnerabilities in target systems
  • Exploiting them under controlled circumstances
  • Determining and documenting business risk
  • Applying technical excellence
  • Working in a professional, safe fashion according to a carefully designed scope and rules of engagement
  • Helping an organisation prioritise their resources in improving its security stance

The purpose of this practical work is to practice, drill and test the knowledge that's been learned.

SANS provides the Pen Test community with free posters and downloads on our Pen Test Resources page.

Training Delivery

SANS offer a menu of training options. These include learning in a classroom-like environment at a Training Event, with a dedicated Instructor. These events offer the chance to secure a SANS Coin.

Alternatively students can take SANS Online Training. This option allows students to work in their own time, either at home or in the office.

Finally, for organisation that has over 25 students to train, we can deliver SANS Private Training. Here a SANS Instructor delivers training directly to staff, in their HQ or office.

Read what previous SANS Pen Test students thought about their training on our Testimonials page.

Penetration Testing Courses

Certification

Many of our Pen Test Courses align with GIAC Certifications. Achieving a GIAC Pen Test Certification offers many benefits.

For employers it ensures staff possess cutting edge skills. For professionals, GIAC Certification can support career progression.

Courseware

Depending upon the course taken, Courseware can include:

  • Textbooks - The textbooks, like the SANS Courses they complement, are regularly updated by our Pen Test experts.
  • A tool set - If we explore a specific open source tool in class, we'll ensure students receive a copy. If there are licencing restrictions we'll ensure, at a minimum, students receive a trial version.
  • Posters - To help make complex processes and concepts more digestible, SANS creates visual wall charts. They cover tips, tricks, tools, resources, and useful references.
  • Virtualised resources - Where a course features it, students leave with a custom VM full of pen testing tools. The aim is to equip practitioners with the resources to carry out their own tests.
  • Test subjects - Specimen software, apps and products to experiment on.
  • Course audio - Access to audio files that hammer home important advice.

SANS Penetration Training Courses

SANS offers twelve distinct courses in this curriculum, covering different strands of the discipline. These courses fall into three categories - Core, Advanced and Specialist. For any questions relating to training please see our FAQs page.

SANS Core Pen Test Courses

For people new to cyber security who want to specialise in pen testing our Pen Test curriculum starts with SEC301, a course designed to teach information security's fundamentals.

From there students can move on to SEC401 - a practical, bootcamp style course designed to help defenders prevent attacks and detect adversaries.

SEC504 puts the bad guy's tactics and techniques under the microscope. It proves invaluable insight into finding vulnerabilities and discovering intrusions. By its very nature, SEC504 is aligned with criminals' latest tactics, technologies and exploits.

SANS Advanced Pen Test Courses

SANS offers a menu of courses that focus on testing and securing different technologies. For example, SEC560 explores network testing. Our SEC561 course builds on this curriculum, offering intensive, hands-on Pen Test training.

SEC562 is SANS' unique CyberCity course. CyberCity is a programme built around a fully wired, connected and scaled model of a modern city. The course teaches students how to attack and defend the city's logical and digital infrastructure.

SEC575 lasers in on mobile device security, while SEC542 tackles web app pen testing.

Developers and defenders who specialise in Python may like to explore SEC573. This course looks at how their skills can be used to aid pen testing missions.

All these courses are full of practical, real world knowledge. They explore how important tools work, and how to conduct tests in a professional and safe manner.

SANS Specialist Pen Test Courses

For students who have existing pen testing experience - or have completed SEC560 - SANS offers SEC660. This heavyweight course explores, among other topics, how today's dominant network protocols, operating systems, and cryptographic practices can be exploited.

SEC760 is one of SANS' most technically demanding courses. It tackles exploit development for pen testers. It teaches students how to write their own white-hat exploits after researching an attack surface. This might be by reverse engineering applications, kernel debugging or though patch analysis.

SEC617 is our specialist course that focuses on wireless hacking, pen test technique, and defence.

Along with networking, apps are becoming a popular business necessity. SEC642 teaches students how criminals approach attacking apps and what can be learned from their techniques.


Penetration Testing Curriculum
Course Certification
Level 1 SEC301: Introduction to Cyber Security GISF
Level 2 SEC401: Security Essentials Bootcamp Style GSEC
SEC460: Enterprise Threat and Vulnerability Assessment
Level 3 SEC504: Hacker Tools, Techniques, Exploits, and Incident Handling GCIH
SEC550: Active Defense, Offensive Countermeasures and Cyber Deception
Level 4 SEC542: Web App Penetration Testing and Ethical Hacking GWAPT
SEC560: Network Penetration Testing and Ethical Hacking GPEN
SEC561: Immersive Hands-on Hacking Techniques
SEC562: CyberCity Hands-on Kinetic Cyber Range Exercise
SEC564: Red Team Operations and Threat Emulation
SEC567: Social Engineering for Penetration Testers
SEC573: Automating Information Security with Python GPYC
SEC575: Mobile Device Security and Ethical Hacking GMOB
SEC580: Metasploit Kung Fu for Enterprise Pen Testing
Level 5 SEC617: Wireless Penetration Testing and Ethical Hacking GAWN
SEC642: Advanced Web App Penetration Testing, Ethical Hacking, and Exploitation Techniques
SEC660: Advanced Penetration Testing, Exploit Writing, and Ethical Hacking GXPN
Level 6 SEC760: Advanced Exploit Development for Penetration Testers

Training Events Offering Penetration Testing Courses
Event Dates Register
SANS Krakow 2018 Aug 20 - Aug 25, 2018  
SANS Prague 2018 Aug 20 - Aug 25, 2018  
SANS Copenhagen August 2018 Aug 27 - Sep 01, 2018  
SANS Amsterdam September 2018 Sep 03 - Sep 08, 2018  
SANS Munich September 2018 Sep 16 - Sep 22, 2018  
SANS London September 2018 Sep 17 - Sep 22, 2018  
SANS DFIR Prague Summit & Training 2018 Oct 01 - Oct 07, 2018  
SANS Amsterdam October 2018 Oct 08 - Oct 13, 2018  
SANS Riyadh October 2018 Oct 13 - Oct 18, 2018  
SANS London October 2018 Oct 15 - Oct 20, 2018  
SANS Gulf Region 2018 Nov 03 - Nov 15, 2018  
SANS London November 2018 Nov 05 - Nov 10, 2018  
SANS Paris November 2018 Nov 19 - Nov 24, 2018  
SANS Stockholm 2018 Nov 26 - Dec 01, 2018  
SANS Dublin 2018 Dec 03 - Dec 08, 2018  
SANS Frankfurt 2018 Dec 10 - Dec 15, 2018  
SANS Amsterdam January 2019 Jan 14 - Jan 19, 2019  
SANS Threat Hunting London 2019 Jan 14 - Jan 19, 2019  
SANS London February 2019 Feb 11 - Feb 16, 2019  
SANS Zurich February 2019 Feb 18 - Feb 23, 2019  
SANS Riyadh February 2019 Feb 23 - Feb 28, 2019  
SANS Brussels February 2019 Feb 25 - Mar 02, 2019  
SANS London March 2019 Mar 11 - Mar 16, 2019  
SANS Munich March 2019 Mar 18 - Mar 23, 2019  
Online Training: SANS OnDemand
Private Training
Event Dates Register
Private Training Course of Your Choice Your Choice