Login to profile

CREST Registered Penetration Tester (hotel-based exam)

The CREST Registered Penetration Tester examination is recognised by the NCSC as providing the minimum standard for CHECK Team Member status and is designed to assess a candidate’s ability to carry out basic vulnerability assessment and penetration testing tasks.

Examination format
The CREST Registered penetration tester exam is a practical assessment where the candidate will be expected to find known vulnerabilities across common network, application and database technologies and a multiple choice section aimed at assessing the candidates technical knowledge.

In order to book to take the examination, the candidate must hold a valid CPSA pass.

You can download the following documents from the links below:

In-depth exam insights from a CREST Assessor.

Syllabus for the Registered tester examination

Notes for Candidates to aid examination preparation

For costs and availability please refer to individual country booking. The examination is delivered at a CREST examination centre.

Recommended Preparation Material
The CREST Assessors panel regularly identifies common themes and consolidates common questions and answers from candidates and from the industry in relation to the CREST certification examinations. Candidates are advised to familiarise themselves with these, although they are free to disregard them if they wish.

CREST recommends that candidates familiarise themselves with the content in our FAQS which has been created specifically for those attempting a practical examination.

The following material and media have been cited as helpful preparation for this examination by previous candidates:

Reading Material:
Network Security Assessment (by O’Reilly, 2nd edition)
Hacking Exposed Linux
Red Team Field Manual (RTFM) (by Ben Clarke)
Nmap Network Scanning: The Official Nmap Project (by Gordon Lyon)
Guide to Network Discovery and Security Scanning
Grey Hat Hacking (by Allen Harper, Shon Harris & Jonathan Ness)

6point6 – CREST Approved Training Provider
Cyberskills Training – CREST Approved Training Provider
ICSI Ltd – CREST Approved Training Provider
Immersive Labs – CREST Approved Training Provider
PGI Cyber Academy – CREST Approved Training Provider
QA – CREST Approved Training Provider
Samurai Digital Security – CREST Approved Training Provider
Telefonica Cybersecurity & Cloud Tech SL – CREST Approved Training Provider

Offensive Security
Certified Ethical Hacker Passport

How to Book
Please complete the online booking form to register your place.

Useful Information for Candidates
Details of the Logistics and Timings of CREST examinations can be found in the Examination Preparation pages for your country of choice
CREST’s Policy for Candidates requiring special arrangements including additional time to accommodate a medical condition (including examinations delivered via Pearson Vue.
Terms and Conditions for CREST Examinations (includes hard disk drive wiping policy)