MPT - Certified Penetration Tester


MCSI Certification Programmes are truly worldclass because the content offers you unique hands-on practical and challenging exercises that teach skills immediately applicable in the field and for career advancement.

This Certification has no expiry date, no renewal fees, no hidden fees, and is accessible with no time limits.

MCSI Certified Penetration Tester:
  • Understand the vulnerability research and exploitation process in full
  • Write custom penetration testing tools when that’s needed
  • Master the major penetration testing tools and use them when it’s appropriate
  • Perform code reviews and dynamic fuzzing
  • Write penetration testing proposals and reports that delight customers

Career Outcomes

Individuals who hold the MPT Certification can apply for Penetration Testing jobs worldwide with the confidence that they have the competencies that the industry is seeking.

Training Curriculum and Online Assessment

Students must successfully complete 100 practical exercises in MCSI's Online Learning Platform (OLP) prior to undertaking the Final Online Assessment to obtain this Certification.

As an MCSI Certified Penetration Tester you will be fully capable of performing the following:

  1. Identify and exploit the most common web application vulnerabilities. For example:
    • SQL Injection
    • Object Injection
    • XXE Injection
    • Arbitrary Command Execution
    • File Inclusion
    • Cross-Site Scripting
    • Brute Forcing
    • Session Fixation
  2. Identify and exploit the most common infrastructure vulnerabilities. For example:
    • Missing critical security patches
    • Privilege escalation
    • Dumping and reusing credentials
    • Lateral movement and pivoting
    • Tunnelling
  3. Identify and exploit memory corruption vulnerabilities. For example:
    • Reverse engineering network protocols
    • Stack overflows
    • Bypass stack cookies, ASLR, NX/DEP
    • Egg hunters
    • Return Oriented Programming
  4. Write custom attack tools using scripting languages:
    • Python
    • Ruby
  5. Use all the major penetration testing tools:
    • NMAP
    • Metasploit
    • Burp Suite
    • OpenVAS
    • John the Ripper / Hashcat
    • SSH Tunnelling


"Amazed. I have certifications from other popular penetration testing certifications and wish the MPT was the first and only one I completed. The MPT Certification defines what hands-on practical expertise is. Each exercise is like I am working on a real penetration test."

Penetration Tester, Retail Industry

"I enrol all of my Penetration Testers in the MPT because it allows me to assess their current capabilities, and plan a pathway for growth. Using the MPT curriculum as a challenging learning pathway benefits the individual and the team. The MPT is excellent and has provided cost effective, practical training to take someone on my team as a Junior, and know that he/she will have the skills required to be at a senior level."

Penetration Testing Manager, Financial Services

"I enrolled in the MPT 6 months ago when I was first hired as a full-time Penetration Tester to develop my technical skillset and grow my career. After six months of completing the technical exercises, my skillset has grown more than I could have imagined. I am consistently using advanced techniques that I have learnt from the MPT in my day-to-day work."

Graduate Penetration Tester, Consulting Services

Why MCSI’s Penetration Testing Certification is World Class

  • World-Class Requirements Met Are Above Standard: Holders of the MPT Certification have completed 100 practical online exercises thus demonstrating that they have the skills and knowledge required to deliver web, mobile and infrastructure penetration testing. Students take an average of 6 months to complete these exercises.
  • Internals Focused: Students who have obtained this Certification have demonstrated that they have a full understanding of the vulnerability research and exploitation process. This Certification focuses on the internals of how vulnerabilities are identified and exploited rather than remembering commands for tools (though it does cover tools as well).
  • Programming Oriented: Many of the challenges that students must pass to obtain this certification require students to write software in scripting languages. This guarantees that penetration testers certified by MCSI understand how vulnerabilities are created and what it takes to write custom exploitation tools.

Course Overview