EC-Council Certified Security Analyst (ECSA): Penetration Testing
You are an ethical hacker. In fact, you are a Certified Ethical Hacker. Your last name is Pwned. You dream about enumeration and you can scan networks in your sleep. You have sufficient knowledge and an arsenal of hacking tools and you are also proficient in writing custom hacking code. Is that enough?
Can you become an industry accepted security professional? Will organizations hire you to help them protect their systems? Do you have any knowledge in applying a suitable methodology to conduct a penetration test for an enterprise client?
ECSA v10 Exam info:
- Credit Towards Certification: ECSA v10
- Number of Questions: 150
- Passing Score: 70%
- Test Duration: 4 Hours
EC-COUNCIL CERTIFIED SECURITY ANALYST (ECSA)
The ECSA program offers a seamless learning progress, continuing where the CEH program left off.
Unlike most other pen-testing programs that only follow a generic kill chain methodology; the ECSA presents a set of distinguishable comprehensive methodologies that are able to cover different pentesting requirements across different verticals.
The EC-Council iLabs Cyber Range
The ECSA course is a fully hands-on program with labs and exercises that cover real world scenarios. By practicing the skills that are provided to you in the ECSA class, we are able to bring you up to speed with the skills to uncover the security threats that organizations are vulnerable to.
This can be achieved effectively with the EC-Council iLabs Cyber Range. It allows you to dynamically access a host of Virtual Machines preconfigured with vulnerabilities, exploits, tools, and scripts from anywhere with an internet connection.
Our guided step-by-step labs include exercises with detailed tasks, supporting tools, and additional materials as well as our state-of-the-art “Open Environment” allowing you to launch a complete live range open for any form of hacking or testing.
A Security Credential Like No Other!
The ECSA penetration testing course provides you with a real world hands-on penetration testing experience and is a globally accepted hacking and penetration testing class available that covers the testing of modern infrastructures, operating systems and application environments while teaching the students how to document and write a penetration testing report.
About the Program
The ECSA pentest program takes the tools and techniques you learned in the Certified Ethical Hacker course (CEH) and enhances your ability into full exploitation by teaching you how to apply the skills learned in the CEH by utilizing EC-Council’s published penetration testing methodology. It focuses on pentesting methodology with an emphasis on hands-on learning.
Module 00: Penetration Testing Essential Concepts (Self-Study)
Module 01:Introduction to Penetration Testing and Methodologies
Module 02: Penetration Testing Scoping and Engagement Methodology
Module 03: Open-Source Intelligence (OSINT) Methodology
Module 04: Social Engineering Penetration Testing Methodology
Module 05: Network Penetration Testing Methodology – External
Module 06: Network Penetration Testing Methodology – Internal
Module 07: Network Penetration Testing Methodology – Perimeter Devices
Module 08: Web Application Penetration Testing Methodology
Module 09: Database Penetration Testing Methodology
Module 10: Wireless Penetration Testing Methodology
Module 11: Cloud Penetration Testing Methodology
Module 12: Report Writing and Post Testing Actions
Who Is It For?
- Ethical Hackers
- Penetration Testers
- Network server administrators
- Firewall Administrators
- Security Testers
- System Administrators and Risk Assessment professionals
Training OptionsiLearn (Self-Study)
This solution is an asynchronous, self-study environment which delivers EC-Council’s sought after IT Security training courses in a streaming video format.iWeek (Live Online)
This solution is a live, online, instructor-led training course which means you can attend a course with a live instructor from anywhere with an internet connection.Master Class
This solution offers you the opportunity to learn from world-class instructors and the opportunity to collaborate with top Infosecurity professionals.Training Partner (In Person)
This solution offers “in-person” training so that you can get the benefit of collaborating with your peers and gaining real-world skills, conveniently located in your backyard.
At A Glance:
EC-COUNCIL CERTIFIED SECURITY ANALYST (ECSA)
Recent Feedback from ECSA Certified Members
FREQUENTLY ASKED QUESTIONS
To be eligible to apply to sit for the ECSA Exam, candidate must either: Hold an ECSA certification , any version (Your USD100 application fee will be waived); or Have a minimum of 2 years work experience in InfoSec domain (You will need to pay USD100 as a non-refundable application fee); Or Have attended an official EC-Council training (All candidates are required to pay the $100 application fee, however your training fee shall include this fee) Note: Training fee may vary depending on the region, training facilities and mode of training opted for, however no student has any added advantage as the exam is a standard exam for all.
On an average, application processing time would be between 5-10 working days once the verifiers on the application respond to EC-Council’s requests for information.
No, the $100 application fee is not refundable
The application process is valid for 3 months from the date of approval.
Yes, the application form is mandatory for all test takers who want to take the exam directly without undergoing training.
Once your application is approved you can proceed to purchase your exam voucher either from EC-Council Online Store or from one of our authorised training channels.
The ECSA v10 exam is an MCQ (Multiple Choice Question) exam. This exam is only available at the ECC Exam Centre
The exam voucher code is valid for 1 year from the date of receipt.
No, the ECSA v10 does not include a report-writing, should a candidate be interested in a performance based/ skill assessment exam he/she can choose to attempt the ECSA (Practical) exam if eligible.
For those attempting the exam at a physical testing centre (ETC), the exam will be proctored by a proctor authorised at the testing centre.
For those attempting the exam remotely (ECC/ ProctorU), the exam will be proctored remotely by an authorised proctor.
The Exam is a 4 hour session.
This exam does not have a set passing score/ percentage, the number of items that you have to answer correctly varies depending on the difficulty of the questions delivered when you take the exam. To understand how the scoring pattern works, visit the scoring section here.
Sessions should be booked at least 3 days in advance of the desired exam date.
Note: All exam sessions are proctored by EC-Council Certification department.
Once you are ready to proceed with your exam, please ensure you understand the below: You need to run an equipment test You need to carry an identification proof You should hold an valid exam voucher
Retake exam requests can only be purchased by writing to firstname.lastname@example.org, should a candidate fail the exam. You can also read more about the retake policy Here
Yes, the ECSA V10 is a part of the EC-Council Continuing Education Scheme.