courses-BG-01

EC-Council Certified Security Analyst (ECSA): Penetration Testing

divider

You are an ethical hacker. In fact, you are a Certified Ethical Hacker. Your last name is Pwned. You dream about enumeration and you can scan networks in your sleep. You have sufficient knowledge and an arsenal of hacking tools and you are also proficient in writing custom hacking code.

Is that enough?

Can you become an industry accepted security professional? Will organizations hire you to help them protect their systems? Do you have any knowledge in applying a suitable methodology to conduct a penetration test for an enterprise client?

ECSA v10 Exam info:

  • Credit Towards Certification: ECSA v10
  • Number of Questions: 150
  • Passing Score: 70%
  • Test Duration: 4 Hours

EC-COUNCIL CERTIFIED SECURITY ANALYST (ECSA)

The ECSA program offers a seamless learning progress, continuing where the CEH program left off.

Unlike most other pen-testing programs that only follow a generic kill chain methodology; the ECSA presents a set of distinguishable comprehensive methodologies that are able to cover different pentesting requirements across different verticals.

The EC-Council iLabs Cyber Range

The ECSA course is a fully hands-on program with labs and exercises that cover real world scenarios. By practicing the skills that are provided to you in the ECSA class, we are able to bring you up to speed with the skills to uncover the security threats that organizations are vulnerable to.

This can be achieved effectively with the EC-Council iLabs Cyber Range. It allows you to dynamically access a host of Virtual Machines preconfigured with vulnerabilities, exploits, tools, and scripts from anywhere with an internet connection.

Our guided step-by-step labs include exercises with detailed tasks, supporting tools, and additional materials as well as our state-of-the-art “Open Environment” allowing you to launch a complete live range open for any form of hacking or testing.

Become an ECSA

A Security Credential Like No Other!

The ECSA penetration testing course provides you with a real world hands-on penetration testing experience and is a globally accepted hacking and penetration testing class available that covers the testing of modern infrastructures, operating systems and application environments while teaching the students how to document and write a penetration testing report.

About the ProgramCourse OutlineWho Is It For?

About the Program

The ECSA pentest program takes the tools and techniques you learned in the Certified Ethical Hacker course (CEH) and enhances your ability into full exploitation by teaching you how to apply the skills learned in the CEH by utilizing EC-Council’s published penetration testing methodology. It focuses on pentesting methodology with an emphasis on hands-on learning

Course Outline

Module 00: Penetration Testing Essential Concepts (Self-Study)
Module 01: Introduction to Penetration Testing and Methodologies
Module 02: Penetration Testing Scoping and Engagement Methodology
Module 03: Open-Source Intelligence (OSINT) Methodology
Module 04: Social Engineering Penetration Testing Methodology
Module 05: Network Penetration Testing Methodology – External
Module 06: Network Penetration Testing Methodology – Internal
Module 07: Network Penetration Testing Methodology – Perimeter Devices
Module 08: Web Application Penetration Testing Methodology
Module 09: Database Penetration Testing Methodology
Module 10: Wireless Penetration Testing Methodology
Module 11: Cloud Penetration Testing Methodology
Module 12: Report Writing and Post Testing Actions

Who Is It For?

  • Ethical Hackers
  • Penetration Testers
  • Network server administrators
  • Firewall Administrators
  • Security Testers
  • System Administrators and Risk Assessment professionals

WHAT’S NEXT AFTER THE ECSA?

INTRODUCING ECSA (Practical)

Recent Feedback from ECSA Certified Members

about-us-section-divider
INDIAN NAVY’S INFORMATION SECURITY MANAGER, SANDEEP SHARMA, TALKS ABOUT THE ECSA

Attempting to become a penetration tester without understanding and living by the right penetration testing methodologies is much like attempting to cut an apple…

TUSHAR KAMALASKAR, TECHNICAL ACCOUNT MANAGER AT CYBERBIT, TALKS ABOUT HIS CONTINUING JOURNEY WITH EC-COUNCIL

Attempting to become a penetration tester without understanding and living by the right penetration testing methodologies is much like attempting to cut an apple with the back…

EDUARDO NARANJO PESSOTA, SECURITY SPECIALIST NA TECBAN AT BANKING TECHNOLOGY S.A, TALKS ABOUT THE ECSA METHODOLOGIES

A few years ago I decided to reach the LPT Certification and for that I decided to go through all the steps, trainings and certifications. And I saw for the first opportunity…

FREQUENTLY ASKED QUESTIONS

about-us-section-divider

1. What are the eligibility criteria to apply for the ECSA v10 exam?

To be eligible to apply to sit for the ECSA Exam, candidate must either:

  • Hold an ECSA certification , any version (Your USD100 application fee will be waived);
  • or Have a minimum of 2 years work experience in InfoSec domain (You will need to pay USD100 as a non-refundable application fee);
  • Or Have attended an official EC-Council training (All candidates are required to pay the $100 application fee, however your training fee shall include this fee)

Note: Training fee may vary depending on the region, training facilities and mode of training opted for, however no student has any added advantage as the exam is a standard exam for all.

2. How long does the application process take?

On an average, application processing time would be between 5-10 working days once the verifiers on the application respond to EC-Council’s requests for information.

3. Is the $100 application fee refundable?

No, the $100 application fee is not refundable

4. For how long is the approved application valid for?

The application process is valid for 3 months from the date of approval.

5. Is the application form mandatory for all test takers?

Yes, the application form is mandatory for all test takers who want to take the exam directly without undergoing training.

6. What is the next step once the application is approved?

Once your application is approved you can proceed to purchase your exam voucher either from EC-Council Online Store or from one of our authorised training channels.

7. What is the format of the ECSA v10 exam? Where is the exam available?

The ECSA v10 exam is an MCQ (Multiple Choice Question) exam. This exam is only available at the ECC Exam Centre

8. For how long is the exam voucher code valid for?

The exam voucher code is valid for 1 year from the date of receipt.

9. Does the ECSA v10 exam include a report-writing similar to the ECSA v9 exam?

No, the ECSA v10 does not include a report-writing, should a candidate be interested in a performance based/ skill assessment exam he/she can choose to attempt  the ECSA (Practical) exam if eligible.

10. Is the exam proctored? What are the proctoring options available?

For those attempting the exam at a physical testing centre (ETC), the exam will be proctored by a proctor authorised at the testing centre.

For those attempting the exam remotely (ECC/ ProctorU), the exam will be proctored remotely by an authorised proctor.

11. What is the duration of the exam?

The Exam is a 4 hour session.

12. What is the passing criteria?

This exam does not have a set passing score/ percentage, the number of items that you have to answer correctly varies depending on the difficulty of the questions delivered when you take the exam. To understand how the scoring pattern works, visit the scoring section here.

13. How much notice is required to book a remotely proctored exam session?

Sessions should be booked at least 3 days in advance of the desired exam date.

Note: All exam sessions are proctored by EC-Council Certification department.

14. What are the important things to keep in mind before I schedule my exam with a remote proctor?

Once you are ready to proceed with your exam, please ensure you understand the below:

  • You need to run an equipment test
  • You need to carry an identification proof
  • You should hold an valid exam voucher

15. What is the retake policy?

Retake exam requests can only be purchased by writing to [email protected], should a candidate fail the exam. You can also read more about the retake policy Here

16. Is the ECSA V10 title a part of the EC-Council Continuing Education Scheme?

Yes, the ECSA V10 is a part of the EC-Council Continuing Education Scheme.

GET CERTIFIED