CREST - Practitioner Security Analyst (CPSA)



Only 4 Days



Classroom / Online / Hybrid

Next date

Next date:

6/9/2021 (Monday)


On this accelerated 4-day CREST Practitioner Security Analyst course, you'll gain the core knowledge and skills needed to assess operating systems and common network services - 20% faster than traditional training.

The CPSA is the first certification in CREST's Penetration Testing career pathway, and through it, you'll be immersed in the fundamentals of penetration testing.

Your expert instructor will teach you to locate security vulnerabilities by performing basic infrastructure and web application testing and interpreting the results.

On this CREST CPSA course you'll cover a range of exciting topics including:

  • Core Technical Skills - OS fingerprinting, cryptography and network mapping
  • Information Gathering & Open Source - Google Hacking and DNS checks
  • Networking Equipment - configuration analysis and networking protocols
  • Windows and Unix Security Assessments - common vulnerabilities and patch management
  • Web Testing Techniques - fuzzing, CRLF and Session ID attacks

You'll be immersed in the curriculum with our unique Lecture | Lab | Review technique, accelerating your learning and equipping you with hands-on experience. You'll also benefit from 24/7 lab access and get access to CREST-accredited courseware.

This accelerated CPSA training prepares you for the CREST Practitioner Security Analyst exam. Don't pass the first time? Don't worry - you'll be covered by our Certification Guarantee.

This course is ideal for you if you're a systems administrator, incident handler or IT manager wishing to expand your knowledge on Pen testing and Digital Forensics.

Firebrand's corporate training processes, policies and procedures have been successfully assessed against the CREST criteria for the Approved Training Provider discipline. Firebrand are currently working to get course content recognised.

Seven reasons why you should sit your CPSA course with Firebrand Training

  1. You'll be CPSA certified in just 4 days. With us, you’ll be CPSA trained in record time
  2. Our CPSA course is all-inclusive. A one-off fee covers all course materials, exams, accommodation and meals. No hidden extras
  3. Pass CPSA first time or train again for free. This is our guarantee. We’re confident you’ll pass your course first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  4. You’ll learn more CPSA. A day with a traditional training provider generally runs from 9am – 5pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day quality learning time, with your instructor
  5. You’ll learn CPSA faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  6. You’ll be studying CPSA with the best. We’ve been named in Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified 104,996 professionals, and we’re partners with all of the big names in the business
  7. You'll do more than study CPSA courseware. We use practical exercises to make sure you can apply your new knowledge to the work environment. Our instructors use demonstrations and real-world experience to keep the day interesting and engaging


Other accelerated training providers rely heavily on lecture and independent self-testing and study.

Effective technical instruction must be highly varied and interactive to keep attention levels high, promote camaraderie and teamwork between the students and instructor, and solidify knowledge through hands-on learning.

Firebrand Training provides instruction to meet every learning need:

  • Intensive group instruction
  • One-on-one instruction attention
  • Hands-on labs
  • Lab partner and group exercises
  • Question and answer drills
  • Independent study

This information has been provided as a helpful tool for candidates considering training. Courses that include certification come with a certification guarantee. Pass first time or train again for free (just pay for accommodation and exams on your return). We do not make any guarantees about personal successes or benefits of obtaining certification. Benefits of certification determined through studies do not guarantee any particular personal successes.


Firebrand follows the CREST CPSA Technical Syllabus

Syllabus Knowledge Group A: Soft Skills and Assessment Management

  • Module 1: Engagement Lifecycle
  • Module 2: Law & Compliance
  • Module 3: Scoping
  • Module 4: Understanding Explaining and Managing Risk
  • Module 5: Record Keeping, Interim Reporting & Final Results

Syllabus Knowledge Group B: Core Technical Skills

  • Module 1: IP Protocols
  • Module 2: Network Architectures
  • Module 3: Network Mapping & Target Identification
  • Module 4: Interpreting Tool Output
  • Module 5: B5 Interpreting Tool Output
  • Module 6: OS Fingerprinting
  • Module 7: Application Fingerprinting and Evaluating Unknown Services
  • Module 8: Network Access Control Analysis
  • Module 9: Cryptography 
  • Module 10: Applications of Cryptography
  • Module 11: File System Permissions
  • Module 12: Audit Techniques

Syllabus Knowledge Group C: Background Information Gathering and Open Source

  • Module 1: Registration Records
  • Module 2: Domain Name Server (DNS)
  • Module 3: Customer Web Site Analysis
  • Module 4: Google Hacking and Web Enumeration
  • Module 5: NNTP Newsgroups and Mailing Lists
  • Module 6: Information Leakage from Mail & News Headers

Syllabus Knowledge Group D: Networking Equipment

  • Module 1: Management Protocols
  • Module 2: Network Traffic Analysis
  • Module 3: Networking Protocols
  • Module 4: IPSec
  • Module 5: VoIP
  • Module 6: Wireless 
  • Module 7: Configuration Analysis

Syllabus Knowledge Group E: Microsoft Windows Security Assessment

  • Module 1: Domain Reconnaissance
  • Module 2: User Enumeration
  • Module 3: Active Directory
  • Module 4: Windows Passwords
  • Module 5: Windows Vulnerabilities
  • Module 6: Windows Patch Management Strategies
  • Module 7: Desktop Lockdown
  • Module 8:  Exchange
  • Module 9: Common Windows Applications

Syllabus Knowledge Group F: Unix Security Assessment

  • Module 1: User enumeration
  • Module 2: Unix vulnerabilities
  • Module 3: FTP 
  • Module 4: Sendmail / SMTP
  • Module 5: Network File System (NFS)
  • Module 6: R* services 
  • Module 7: X11
  • Module 8: RPC services
  • Module 9: SSH

Syllabus Knowledge Group G: Web Technologies

  • Module 1: Web Server Operation
  • Module 2: Web Servers & their Flaws
  • Module 3: Web Enterprise Architectures
  • Module 4: Web Protocols
  • Module 5: Web Mark-up Languages
  • Module 6: Web Programming Languages
  • Module 7: Web Application Servers
  • Module 8: Web APIs
  • Module 9: Web SubComponents

Syllabus Knowledge Group H: Web Testing Methodologies

  • Module 1: Web Application Reconnaissance
  • Module 2: Threat Modelling and Attack Vectors
  • Module 3: Information Gathering from Web Mark-up
  • Module 4: Authentication Mechanisms
  • Module 5: Authorisation Mechanisms
  • Module 6: Input Validation
  • Module 7: Information Disclosure in Error Messages
  • Module 8: Use of Cross Site Scripting Attacks
  • Module 9: Use of Injection Attacks
  • Module 10: Session Handling
  • Module 11: Encryption
  • Module 12: Source Code Review

Syllabus Knowledge Group I: Web Testing Techniques - only applicable to CRT

Syllabus Knowledge Group J: Databases

  • Module 1: Microsoft SQL Server
  • Module 2: Oracle RDBMS
  • Module 3: Web / App / Database Connectivity

Exam Track

As part of your accelerated course, you'll sit the following exam at the Firebrand Training centre, covered by your Certification Guarantee:

CREST Practitioner Security Analyst CPSA

  • Format: Multiple choice; closed book
  • Duration: 2 hours
  • Passing score: 60%
  • Number of questions: 120

The CREST Practitioner Security Analyst certification is valid for 3 years.

To achieve CREST Registered Status, you must pass both the Crest Practitioner Security Analyst (CPSA) and CREST Registered Tester (CRT) exams.

What's Included

Firebrand Training offers top-quality technical education and certification training in an all-inclusive course package specifically designed for the needs and ease of our students. We attend to every detail so our students can focus solely on their studies and certification goals.

Our Certification Programs includes

  • Intensive Hands-on Training Utilising our (Lecture | Lab | Review)TM Delivery
  • Comprehensive Study Materials, Program Courseware and Self-Testing Software including MeasureUp *
  • Fully instructor-led program with 24 hour lab access
  • Examination vouchers **
  • Near site testing, Transportation to/from Testing Center are provided ***
  • Accommodation, all meals, unlimited beverages, snacks and tea / coffee****
  • Examination Passing Policy

Please note

  • * Not on all courses
  • ** Examination vouchers are not included for the following courses: PMP, CAPM and CISSP CBK Review
  • *** Not included in our PMP, CAPM, CISA, CISM, CGEIT, CRISC, (ISC)2 or ITIL Managers and Revision Certifications
  • **** Accommodation not included on the CISSP CBK Review Seminar

Our instructors teach to accommodate every student's learning needs through individualised instruction, hands-on labs, lab partner and group exercises, independent study, self-testing, and question/answer drills.

Firebrand Training has dedicated, well-equipped educational facilities where you will attend instruction and labs and have access to comfortable study and lounging rooms. Our students consistently say our facilities are second-to-none.

Examination Passing Policy

Should a student complete a Firebrand Training Program without having successfully passed all vendor examinations, the student may re-attend that program for a period of one year.  Students will only be responsible for accommodations and vendor exam fees.


To attend this course, you should have a good understanding of the technical aspects of IT with at least one year's experience in network or server administration.

Unsure whether you meet the prerequisites? Don’t worry. Your training consultant will discuss your background with you to understand if this course is right for you.


Here's the Firebrand Training review section. Since 2001 we've trained exactly 104,996 students and asked them all to review our Accelerated Learning. Currently, 96.66% have said Firebrand exceeded their expectations.

Read reviews from recent accelerated courses below or visit Firebrand Stories for written and video interviews from our alumni.

"Fantastic instructor. Professional, enthusiastic, and knows the subject inside out. An absolute pleasure to learn from. "
J.M.J., Program Planning Professionals Ltd. (8/10/2018 (Monday) to 11/10/2018 (Thursday))

"The instructor we had was very knowledgeable and approachable and willing to delve further into detail (time permitting). Course content was very informative and additional reading material is very helpful so I know where to concentrate my efforts."
Philip Freeman, Xpertex. (8/10/2018 (Monday) to 11/10/2018 (Thursday))

"Excellent training - trainers and venue ideally setup to support your learning needs."
Chris Cobb, Xpertex ltd. (8/10/2018 (Monday) to 11/10/2018 (Thursday))

"Brilliant course which was very comprehensive. Long hours but instructor was also flexible and happy to adapt pace to needs of group/individual. "
J.T.. (20/8/2018 (Monday) to 23/8/2018 (Thursday))

"Excellent facilities and training structure. Long hours but worth investing the time."
William Davies. (20/8/2018 (Monday) to 23/8/2018 (Thursday))

Course Dates

CREST - Practitioner Security Analyst (CPSA)




Book now

5/7/2021 (Monday)

8/7/2021 (Thursday)

Finished - Leave feedback


6/9/2021 (Monday)

9/9/2021 (Thursday)

Wait list


Latest Reviews from our students