CREST Practitioner Intrusion Analyst (CPIA)

- Only 4 Days

On this 4-day accelerated CREST Practitioner Intrusion Analyst course, you'll become familiar with the basics of the three primary areas of cyber-attack analysis: network intrusion, host intrusion and malware reverse engineering.

You'll be CREST CPIA trained 20% faster than traditional courses. You'll be immersed in the CPIA curriculum using our unique Lecture | Lab | Review technique - helping you build and retain information faster.

Your expert instructor will guide you through how to detect and handle an attack. Then trace, acquire, investigate, analyse and re-construct the incident. Throughout your CPIA training you'll study the basics of malware analysis by understanding the key tools and techniques malware analysts use to examine malicious programs.

Read more...

Achieve the CPIA certification fast as you learn:

  • Soft Skills and Incident Handling - incident chronology, record keeping, law and compliance
  • Core Technical Skills - file system permissions, network architectures and cryptography
  • Network Intrusion Analysis - unusual protocol behaviour, internal spread and privilege escalation
  • Analysing Host Intrusions - identifying suspect files, malware behaviours and anti-forensics
  • Reverse Engineering Malware - hiding techniques, binary obfuscation and processor architectures

During the course, you'll prepare for the CPIA exam. Don't pass the first time? Don't worry - we've got you covered with your Certification Guarantee.

This course is ideal for you if you're a systems administrator, incident handler, IT manager, Government or law enforcement wishing to expand your knowledge on Digital Forensics. This is also a perfect starting point for those hoping to start a career in Intrusion Analysis or Digital Forensics as this course sets a new security baseline.

The CPIA certification is a prerequisite for the CREST Registered Intrusion Analyst course.

See Benefits...

See prices now to find out how much you could save when you train at twice the speed.

Seven reasons why you should sit your course with Firebrand Training

  1. You'll be CPIA certified in just 4 days. With us, you’ll be CPIA trained in record time
  2. Our CPIA course is all-inclusive. A one-off fee covers all course materials, exams, accommodation and meals. No hidden extras
  3. Pass CPIA first time or train again for free. This is our guarantee. We’re confident you’ll pass your course first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  4. You’ll learn more. A day with a traditional training provider generally runs from 9am – 5pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day quality learning time, with your instructor
  5. You’ll learn CPIA faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  6. You’ll be studying CPIA with the best. We’ve been named in Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified 72,589 professionals, and we’re partners with all of the big names in the business
  7. You'll do more than study Firebrand's courseware. We use practical exercises to make sure you can apply your new knowledge to the work environment. Our instructors use demonstrations and real-world experience to keep the day interesting and engaging

See prices now to find out how much you could save when you train at twice the speed.

Latest CPIA Reviews from our students

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

Other accelerated training providers rely heavily on lecture and independent self-testing and study.

Effective technical instruction must be highly varied and interactive to keep attention levels high, promote camaraderie and teamwork between the students and instructor, and solidify knowledge through hands-on learning.

Firebrand Training provides instruction to meet every learning need:

  • Intensive group instruction
  • One-on-one instruction attention
  • Hands-on labs
  • Lab partner and group exercises
  • Question and answer drills
  • Independent study

This information has been provided as a helpful tool for candidates considering training. Courses that include certification come with a Certification Guarantee. Pass first time or train again for free (just pay for accommodation, exams and incidental costs). We do not make any guarantees about personal successes or benefits of obtaining certification. Benefits of certification determined through studies do not guarantee any particular personal successes.

See Curriculum...

Latest CPIA Reviews from our students

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

Module 1: Soft Skills and Incident Handling

  • Engagement Lifecycle Management
  • Incident Chronology
  • Law & Compliance
  • Record Keeping, Interim Reporting & Final Results
  • Threat Assessment

Module 2: Core Technical Skills

  • IP Protocols
  • Network Architectures
  • Common Classes of Tools
  • OS Fingerprinting
  • Application Fingerprinting
  • Network Access Control Analysis
  • Cryptography
  • Applications of Cryptography
  • File System Permissions
  • Host Analysis Techniques
  • Understanding Common Data Formats

Module 3: Background Information Gathering & Open Source

  • Registration Records
  • Domain Name Server (DNS)
  • Open Source Investigation and Web Enumeration
  • Extraction of Document Meta Data
  • Community Knowledge

Module 4: Network Intrusion Analysis

  • Network Traffic Capture
  • Data Sources and Network Log Sources
  • Network Configuration Security Issues
  • Unusual Protocol Behaviour
  • Beaconing
  • Encryption
  • Command and Control Channels
  • Exfiltration of Data
  • Incoming Attacks
  • Reconnaissance
  • Internal Spread and Privilege Escalation
  • Web Based Attacks
  • False Positive Acknowledgement

Module 5 Analysing Host Intrusions

  • Host-Based Data Acquisition
  • Live Analysis Laboratory Set-up
  • Windows File System Essentials
  • Windows File Structures
  • Application File Structures
  • Windows Registry Essentials
  • Identifying Suspect Files
  • Storage Media
  • Memory Analysis
  • Infection Vectors
  • Malware Behaviours and Anti-Forensics
  • Rootkit Identification
  • Live Malware Analysis

Module 6: Reverse Engineering Malware

  • Windows Anti-Reverse Engineering
  • Functionality Identification
  • Windows NT Architecture
  • Windows API Development
  • Binary code structure
  • Cryptographic Techniques
  • Processor Architectures
  • Windows Executable File Formats
  • Hiding Techniques
  • Malware Reporting
  • Binary Obfuscation
  • Behavioural Analysis

Module 7: CPIA Exam Preparation & Mock Exam

  • CPIA- Examination Guidance
  • CPIA- Mock Examination

See Exam Track...

Latest CPIA Reviews from our students

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

The CREST Practitioner Intrusion Analyst exam is a closed book exam comprising of 120 multiple choice questions.

Exam time: 2 hours

The exam fee is not included in the course price. If you wish to take the exam, we'll provide instructions on how to register with CREST.

See What's Included...

Latest CPIA Reviews from our students

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

On this course, you'll get CREST Practitioner Intrusion Analyst courseware.

Firebrand Training offers top-quality technical education and certification training in an all-inclusive course package specifically designed for the needs and ease of our students. We attend to every detail so our students can focus solely on their studies and certification goals.

Our Accelerated Learning Programmes include:

  • Intensive Hands-on Training Utilising our (Lecture | Lab | Review)TM Delivery
  • Comprehensive Study Materials, Program Courseware and Self-Testing Software including MeasureUp *
  • Fully instructor-led program with 24 hour lab access
  • Examination vouchers **
  • On site testing ***
  • Accommodation, all meals, unlimited beverages, snacks and tea / coffee****
  • Transportation to/from designated local railway stations
  • Examination Passing Policy

Our instructors teach to accommodate every student's learning needs through individualised instruction, hands-on labs, lab partner and group exercises, independent study, self-testing, and question/answer drills.

Firebrand Training has dedicated, well-equipped educational facilities where you will attend instruction and labs and have access to comfortable study and lounging rooms. Our students consistently say our facilities are second-to-none.

Firebrand goes digital

We’re currently migrating from printed to digital courseware. Some courseware is already available in digital, while other books remain in printed form. To find out if this course is digital, call us on 080 80 800 888.

There are several benefits of easy-to-use digital courseware: downloads are immediate, and you’ll always have your courseware available wherever you are. You won’t need to wait for a printed book to be delivered before you start learning – and it’s better for the environment. You can choose to download the courseware to your own device, or borrow one of ours.

Considering a Microsoft course? Always have the most up-to-date Microsoft digital courseware with ‘Fresh Editions’. This gives you access to all versions of digital courseware – you’ll receive updates and revisions of your textbook, at no charge, for the life of that course.

Examination Passing Policy

Should a student complete a Firebrand Training Program without having successfully passed all vendor examinations, the student may re-attend that program for a period of one year.  Students will only be responsible for accommodations and vendor exam fees.

Please note

  • * Not on all courses
  • ** Examination vouchers are not included for the following courses: GIAC, CREST and CISSP CBK Review. Exam vouchers may also not be included for Apprentices and will require a separate purchase by an employer due to Education and Skills Funding Agency guidelines.
  • *** On site testing is not included for our GIAC, CREST or ITIL Managers and Revision Certification Courses
  • **** Accommodation not included on the CISSP CBK Review Seminar

See Prerequisites...

Latest CPIA Reviews from our students

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

To attend this course, you should have a good understanding of the technical aspects of IT with at least one year's experience in network or server administration.

Unsure whether you meet the prerequisites?

Don’t worry - we’ll discuss your technical background, experience and qualifications to determine whether this accelerated course suits you.

Just call us on 080 80 800 888 and speak to one of our enrolment consultants.

Firebrand is an immersive environment and requires commitment. Some prerequisites are simply guidelines; you may find your unique experience, attitude and determination enables you to succeed on your accelerated course.

See Prerequisites...

Latest CPIA Reviews from our students

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

Um diesen Kurs erfolgreich zu absolvieren, sollten Sie ein gutes Verständnis von den technischen Aspekten der IT aufweisen und mindestens ein Jahr Erfahrung in der Netzwerk- oder Serververwaltung haben.

Unsure whether you meet the prerequisites?

Don’t worry - we’ll discuss your technical background, experience and qualifications to determine whether this accelerated course suits you.

Just call us on 080 80 800 888 and speak to one of our enrolment consultants.

Firebrand is an immersive environment and requires commitment. Some prerequisites are simply guidelines; you may find your unique experience, attitude and determination enables you to succeed on your accelerated course.

See Dates...

Latest CPIA Reviews from our students

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

CREST CPIA Course Dates

Start

Finish

Status

Location

Book now

26/8/2019 (Monday)

29/8/2019 (Thursday)

Finished

-

 

10/2/2020 (Monday)

13/2/2020 (Thursday)

Limited availability

Nationwide

 

23/3/2020 (Monday)

26/3/2020 (Thursday)

Open

Nationwide

 

4/5/2020 (Monday)

7/5/2020 (Thursday)

Open

Nationwide

 

15/6/2020 (Monday)

18/6/2020 (Thursday)

Open

Nationwide

 

Latest CPIA Reviews from our students

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

Here's the Firebrand Training review section. Since 2001 we've trained exactly 72,589 students and asked them all to review our Accelerated Learning. Currently, 96.76% have said Firebrand exceeded their expectations.

Read reviews from recent accelerated courses below or visit Firebrand Stories for written and video interviews from our alumni.


"Fantastic instructor. Professional, enthusiastic, and knows the subject inside out. An absolute pleasure to learn from. "
J.M.J., Program Planning Professionals Ltd. - CREST Practitioner Security Analyst (CPSA) (4 days) (8/10/2018 to 11/10/2018)

"The instructor we had was very knowledgeable and approachable and willing to delve further into detail (time permitting). Course content was very informative and additional reading material is very helpful so I know where to concentrate my efforts."
Philip Freeman, Xpertex. - CREST Practitioner Security Analyst (CPSA) (4 days) (8/10/2018 to 11/10/2018)

"Excellent training - trainers and venue ideally setup to support your learning needs."
Chris Cobb, Xpertex ltd. - CREST Practitioner Security Analyst (CPSA) (4 days) (8/10/2018 to 11/10/2018)

"A great learning experience."
john clark, allpay. - ISTQB Firebrand's Training for ISTQB's Advanced Test Manager Certification (3 days) (14/10/2019 to 16/10/2019)

"Well organised with good facilities.Very helpful to have the accommodation literally in the next building to the training center. "
Ann Shepherd. - Software Testing Agile Tester (2 days) (14/10/2019 to 15/10/2019)

"Firebrand is a great environment to learn and grow. All the staff are welcoming and helpful."
Anonymous. - ITIL® Foundation Certification (ITIL 4) (2 days) (7/10/2019 to 8/10/2019)

"Course was made really interesting by interaction and useful tips throughout."
Anonymous. - ITIL® Foundation Certification (ITIL 4) (2 days) (7/10/2019 to 8/10/2019)

"Interesting training and lots of useful exam tips."
Anonymous. - ITIL® Foundation Certification (ITIL 4) (2 days) (7/10/2019 to 8/10/2019)

"Passed so happy"
Anonymous. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"Firebrand provide a consistent delivery of high quality training targeted at an appropriate level.Highly recommended."
Paul Horn, ESOS. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"The instructor is a spectacular instructor who is extremely thorough , a great practitioner and instructor/facilitator and instruction designer. Six star not five star."
Babita Kumar, New Signatur. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (7/10/2019 to 12/10/2019)

"The instructor's real world examples really helped with understanding the course content and i would highly recommend using Firebrand."
James Crane, Seven Investment Management LLP. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (7/10/2019 to 12/10/2019)

"Good support and well worth it."
Anonymous. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (7/10/2019 to 12/10/2019)

"Excellent tuition by real world professional.The isolated but comfortable environment is perfect for undistributed learning and practice."
Angus Macrae. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"This is a great course presented with lots of useful material and shared experience from the trainer."
David Meekins, FCO. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"The instructor is the best..."
Richard Lindsay. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"Training focused on key topics required for test exam, Excellent trainer with very in depth understanding of course material and ISC2 expectations. I would highly recommend the training."
N.R., Schroders . - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"This is a great course to consolidate your cloud security knowledge and get the certification paper to prove the same. Come prepared."
N.C., Verizon. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"Very good stress free training due to the facilities. Instruction very good and available when ever needed to clear up any confusion. "
S.H., BAE SYSTEMS. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"Very informative and fun course. Would recommend it!"
S.Z., Trend Controls. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"This is the 3rd course I have attended at Firebrand and I would wholeheartedly recommend it to anyone. The instructors are very knowledgeable and, critically, have experience in the representative study areas."
R.O.. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"Love it, I’ve used firebrand three times and would definitely recommend "
Anonymous. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"Well structured and informative course. Very intense course, but very enjoyable. "
C.C.. - (ISC)2 CCSP - Certified Cloud Security Professional (6 days) (6/10/2019 to 11/10/2019)

"It is great, no distractions and a lot of practical learning."
Daniel Akkel. - ITIL® Foundation Certification (ITIL 4) (2 days) (7/10/2019 to 8/10/2019)

"The training was in a relaxed atmosphere with good facilities and a great instructor.Thanks!"
C.B.. - CompTIA Cloud+ (3 days) (7/8/2019 to 9/8/2019)

"I found the course very interesting, providing a great deal of information around various use cases for cloud modules. The instructor ran the course very well, being engaging and informative throughout."
Anonymous, IBM. - CompTIA Cloud+ (3 days) (7/8/2019 to 9/8/2019)

"Enjoyed visit to Wyboston lakes. Staff and facilities were exceptional - Highly recommended for those who want to learn in accelerated mode !"
S.R.. - Microsoft MCSA: BI Reporting (4 days) (5/8/2019 to 8/8/2019)

"Very friendly atmosphere and everyone is very helpful."
Thomas Stephens. - Microsoft MCSA: BI Reporting (4 days) (5/8/2019 to 8/8/2019)

"Very informative and helpful with questions enabling me to get my certification."
Michael Howard. - Microsoft MCSA: BI Reporting (4 days) (5/8/2019 to 8/8/2019)

"Intense.. but good!"
K.P.. - Microsoft MCSA: BI Reporting (4 days) (5/8/2019 to 8/8/2019)

"The lecturer is very knowledgeable and charismatic. I really enjoyed my course and learned a lot."
Anonymous. - Microsoft MCSA: BI Reporting (4 days) (5/8/2019 to 8/8/2019)

"Although long hours, the instruction was excellent. Lots of examples of cyber security in the real world making it more real. Thank you."
C.F., MoD. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (29/7/2019 to 3/8/2019)

"Good focused environment in which to learn and meet peers."
Anonymous. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (29/7/2019 to 3/8/2019)

"I have used Firebrand Training a few times now and they never disappoint. The instructor did everything in his power to ensure that he covered various learning styles and has vast experience in the area he teaches. All of the staff onsite are friendly and do their utmost to ensure you have everything you need."
Melanie Taylor, Security Risk Managemnt . - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (29/7/2019 to 3/8/2019)

"The experience re-ignited my passion for learning and more importantly, and seek to implement that learning."
J.P.. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (29/7/2019 to 3/8/2019)

"An intense week of training, but totally worth it!"
Anonymous. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (29/7/2019 to 3/8/2019)

"Excellent experience to get your head down and really concentrate on the subject matter."
Anonymous, NA. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (29/7/2019 to 3/8/2019)

"Although intensive, there was still time to explore topics that were interesting and particularly useful. I learnt more than I thought I would."
Robert Baxter. - Microsoft Programming in C# (4 days) (29/7/2019 to 1/8/2019)

"Firebrand offers a unique experience with on-site learning. This empowers you to dedicate your complete focus on gaining a good understanding of the subject material in a short amount of time."
C.N.. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (29/7/2019 to 3/8/2019)

"The instructor is a star with a depth of knowledge that got me to the pass."
Anonymous. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (29/7/2019 to 3/8/2019)

"A wonderful self contained bubble in the middle of nowhere, with excellent facilities, trainer and life support systems. Perfectly set up to support the focus and consolidation for the knowledge and techniques needed to pass the CISSP."
Alan Morris, Crawford and company. - (ISC)2 CISSP - Certified Information Systems Security Professional (6 days) (29/7/2019 to 3/8/2019)

"Fast paced and hard work, but good"
Anonymous. - Microsoft Dynamics 365 Customisation and Configuration (4 days) (29/7/2019 to 1/8/2019)

"Very well-organised, great communication, fabulous facilities and approachable well-informed instructor .The instructor provided real-life examples and clear explanations with relevant slides, notes, lab work and practice questions. Also. there are small, informal,and supportive groups.As well as, good and nearby accommodation. There is Lots of Food! The hot chocolate kept me going late at night ."
Anonymous. - Microsoft Dynamics 365 Customisation and Configuration (4 days) (29/7/2019 to 1/8/2019)

"Would recommend to anyone wanting an intense training session with great staff."
Anonymous. - Microsoft Programming in C# (4 days) (29/7/2019 to 1/8/2019)

"Great training course and a great instructor. Very intensive but highly informative."
S.B.. - CompTIA Security+ (3 days) (29/7/2019 to 31/7/2019)

"Nice facilities, contextual learning, practical examples, and a knowledgeable and engaging tutor. "
Y.M.. - CompTIA Security+ (3 days) (29/7/2019 to 31/7/2019)

"The course is very in depth and beneficial, sometimes it can be complicated but not only do the teachers help you, a lot of the other students do as well. "
M.S., Cyber threat Security LTD. - CompTIA Security+ (3 days) (29/7/2019 to 31/7/2019)

"Firebrand training really is accelerated learning at its finest.From the experienced instructors, to the course content and guidance to help you prepare for the exam/takeaways to your given career.I loved my stay here and if I was planning to do another course which firebrand offers, I would not look else where."
Abdulkarim Youssof, KDS UK Ltd. - Microsoft Programming in C# (4 days) (29/7/2019 to 1/8/2019)

"Great quality of teaching along with the enthusiasm of the trainer to break every step down into real world examples helped my understanding. Would recommend to anyone wanting an intense training session with great staff."
Matthew Kemp. - Microsoft Programming in C# (4 days) (29/7/2019 to 1/8/2019)

"I think the course was great and the instructor taught us well given the time he had. "
Umera Saddiq, Thomson Reuters . - CompTIA Security+ (3 days) (29/7/2019 to 31/7/2019)

Latest CPIA Reviews from our students

Think you are ready for the course? Take a FREE practice test to assess your knowledge!