
CompTIA Ethical Hacker Pro
CompTIA Ethical Hacker Pro covers ethical hacking and penetration testing through online lessons, demonstrations, quizzes, and hands-on lab simulations. Participants practice reconnaissance, vulnerability scanning, enumeration, controlled exploitation, web application testing, wireless security, malware concepts, sniffing, session hijacking, DoS risks, cloud and IoT security, and reporting.
No sessions available
Check back later or contact a provider directly.
Description
CompTIA Ethical Hacker Pro covers ethical hacking and penetration testing through online lessons, demonstrations, quizzes, and hands-on lab simulations.
Participants practice reconnaissance, vulnerability scanning, enumeration, controlled exploitation, web application testing, wireless security, malware concepts, sniffing, session hijacking, DoS risks, cloud and IoT security, and reporting. Labs use tools and environments such as Kali Linux, Nmap, Metasploit, Wireshark, Burp Suite, Aircrack-ng, John the Ripper, Windows, and Cisco Security Appliances.
After completion, learners can assess systems, test defenses ethically, and document findings for security teams.
What You Will Learn
Module 1: Ethical Hacking Foundations
Legal and ethical rules for security testing, including permission, scope, target selection, and assessment types.
Penetration testing phases, threat actor types, and the difference between offensive testing and defensive security work.
Module 2: Reconnaissance, Scanning, and Enumeration
Information gathering methods used to identify systems, services, users, and exposed assets.
Network scanning and traffic analysis concepts using tools such as Nmap and Wireshark.
Enumeration techniques for finding services, accounts, shares, and configuration weaknesses.
Module 3: Vulnerability Analysis and System Attacks
How to analyze vulnerability findings, separate likely risks from false positives, and plan safe testing steps.
System hacking topics, including password attacks, privilege escalation, malware concepts, sniffing, session hijacking, and denial-of-service risks.
Lab simulations for practicing tasks in controlled environments rather than on live production systems.
Module 4: Web, Wireless, Cloud, IoT, and Cryptography
Web application and database attacks, including SQL injection and common input validation weaknesses.
Wireless, Bluetooth, mobile, cloud computing, IoT, and cryptography topics relevant to ethical hacking work.
Defensive controls such as IDS, firewalls, honeypots, intrusion prevention with pfSense, and security review with tools such as Kibana.
Module 5: Incident Response, Reporting, and Certification Practice
Incident response concepts, including detection, containment, evidence handling, and recovery planning after a security event.
Documenting findings, explaining technical risk, and recommending practical remediation steps.
Practice questions, demonstrations, and simulated labs to support preparation for the CompTIA Ethical Hacker Pro performance-based assessment.
Certification & Exam
This course prepares participants for the CompTIA Ethical Hacker Pro competency assessment, which leads to the CompTIA Ethical Hacker Pro Certificate of Competency, also referred to as a CompCert.
The assessment is performance-based and completed in a simulated environment, with up to 14 lab questions and up to 50 tasks. Candidates have 150 minutes to complete the exam. Scores range from 200 to 2000, with a listed passing score of 1400.
The assessment checks practical ability in reconnaissance, scanning, vulnerability testing, ethical exploitation, web application security, wireless security, and reporting. For current requirements, see the official CompTIA Ethical Hacker Pro page.
What You Will Achieve
Apply ethical hacking and penetration testing principles to plan authorized security assessments with clear scope, rules of engagement, and risk controls.
Perform reconnaissance, enumeration, and vulnerability scanning to identify exposed services, weak configurations, and likely attack paths.
Use common security tools, including Kali Linux, Nmap, Metasploit, Wireshark, Burp Suite, Aircrack-ng, and John the Ripper, in safe lab environments.
Analyze system, network, web application, wireless, Bluetooth, mobile, cloud, and IoT weaknesses and explain the security risks they create.
Demonstrate controlled attack techniques such as system exploitation, session hijacking, denial of service analysis, SQL injection, malware analysis, and packet sniffing.
Implement defensive measures using methods such as secure configuration, cryptography, intrusion detection systems, firewalls, honeypots, and secure network communication practices.
Evaluate social engineering and physical security threats, then recommend practical controls to reduce human, device, and facility security risks.
Create clear assessment findings that document vulnerabilities, evidence, risk impact, and recommended remediation steps for technical and non-technical stakeholders.
Training Providers
1 providerFAQs
General Information
Prerequisites & Requirements
Certification & Exam
Get Custom In-house Training
Post once, get competitive offers from multiple providers. Choose the one that fits your team.
Similar Trainings
EC Council Certified Ethical Hacker Certification (CEH)
The Certified Ethical Hacker (CEH) course teaches participants how to identify and fix security vulnerabilities. Through hands-on labs and theory, learners use attacker tools to test and strengthen network security. The training covers networks , web applications , cloud , mobile , and IoT systems. Participants develop technical skills for security audits and vulnerability assessments. Upon completion, professionals can perform penetration testing and report security gaps to protect systems from exploitation.
EC-Council Certified Penetration Testing Professional (CPENT)
The Certified Penetration Testing Professional (CPENT ) program is the world’s most comprehensive guided penetration testing program. It offers a complete hands-on pentesting methodology and AI techniques mapped to all pentesting phases. CPENT enables you to master pentesting within an enterprise network environment, evaluating intrusion risks and compiling actionable, structured reports. Distinguish yourself with the CPENT , learning beyond technical knowledge, scoping engagements, understanding design, estimating effort, and presenting findings and thrive as a leader in offensive security with versatile skills. CPENT combines guided learning with hands-on practice while immersing you in diverse live scenarios involving IoT systems, segmented networks, and advanced defenses, with practical challenges mapped to each domain. Gain expertise in advanced skills necessary to create your tools, conduct advanced binary exploitation, double pivot, customize scripts, and write your exploits to penetrate the deepest pockets of the network. Hands-on course featuring CTFs, 110+ labs, live cyber ranges, and 50+ tools Practical exam tests skills on unique multi-disciplinary network ranges The only program to teach a complete pen testing methodology
EC-Council Computer Hacking Forensic Investigator (CHFI)
EC-Council’s CHFI program enabled cybersecurity professionals with the knowledge and skills to perform effective digital forensics investigations and accomplish forensic readiness. Master the methodological approach of forensics process, evidence handling procedures, chain-of-custody, acquisition, preservation, analysis, and reporting of digital evidence, legal procedures to ensure it is admissible in court. Build skills beyond traditional hardware and memory forensics and with cloud forensics, mobile and IoT, investigating web application attacks, and malware forensics. CHFI equips you with skills to validate/triage incidents and guide the incident response teams. Build job ready skills on immersive 68 forensic labs Earn globally recognized and demanded by employers Flexible learning options without quitting your current jobs
EC-Council Certified Network Defender (CND) Program
The CND course gives you a full introduction to network security from a defender’s perspective. You learn how to protect, monitor, detect and respond to threats in modern network environments. The training includes theory and hands-on labs , teaching you how to secure networks, configure firewalls and IDS/IPS, monitor traffic, and implement defensive strategies across devices, endpoints, cloud and IoT. The goal is to equip you to build and maintain secure networks for organisations.
EC-Council Certified Cloud Security Engineer (CCSE)
The CCSE course teaches you how to secure, manage and defend cloud environments. You learn both general cloud-security principles and specific skills for major providers such as AWS, Azure and GCP. The training includes hands-on labs, real-world scenarios, and guidance on cloud governance, compliance, monitoring and incident response. This course prepares you to build secure cloud infrastructures , protect data and services in multi-cloud settings , and respond to cloud-specific threats professionally.
EC-Council Certified DevSecOps Engineer (ECDE)
The ECDE course shows you how to combine development, operations and security in a modern workflow. You learn both cloud-native and on-prem security practices, secure coding, infrastructure hardening, automated security tools and continuous deployment pipelines. The training uses many hands-on labs to build real-world DevSecOps skills.