The EC-Council Licensed Penetration Tester (Master) Credential
To earn the prestigious EC-Council LPT (Master) Credential, you must successfully pass our most challenging practical exam available. The LPT (Master) practical exam is the capstone to EC-Council’s entire information security track; from the Certified Ethical Hacker Program (CEH) to the EC-Council Certified Security Analyst (ECSA) Program. It all culminates with the ultimate test of your career as a penetration tester – the Licensed Penetration Tester practical exam.
You will need to demonstrate a mastery of the skills required to conduct a full blackbox penetration test of a network provided to you by EC-Council on our cyber range. You will follow the entire process taught to you through CEH and ECSA, taking you from reconnaissance, through scanning, enumeration, gaining access, maintaining access, then exploiting vulnerabilities that you will have to seek out in a network that only a true professional will be able to break. EC-Council will provide the entire cyber-range through its cloud based cyber range, iLabs. All toolsets are provided to you, you bring the skill.
To successfully pass the LPT (Master) practical, you must fully document your pen test in a complete, professional penetration test report. This report will follow formats learned in the ECSA program, following industry acceptable, penetration testing and reporting procedures used by only the top professionals in the industry. This report will be reviewed and scored based on a complex rubric by other penetration testing professionals dedicating to upholding the value of EC-Council’s LPT (Master) Credential, and enhancing the professionalization of cyber security as a field.
While the Certified Ethical Hacker course teaches threat agents that can compromise the security posture of an organization, and the EC-Council Security Analyst program provides a repeatable and documentable methodology for deep analysis of an organizations security posture, the Licensed Penetration Tester exam tests the mastery of the skill-sets required to be a true professional penetration tester – Technical Analysis and Report Writing.
To build on the technical skills taught in the CEH course, the ECSA course emphasizes application of a suitable methodology and report writing. The LPT (Master) practical exam thoroughly tests the application of this knowledge and the skills required in an examination that even our reviewers have called “extremely challenging”. The LPT (Master) Exam is the final step after the intense training and certification that you would have received in the Certified Ethical Hacker and the EC-Council Certified Security Analyst programs.
Many have described report writing as one of least preferred, yet arguably one of the most critical parts of any penetration testing engagement. While so many courses are offered globally to cover various subjects in the information security realm, hardly any are dedicated to this very important skill, especially almost half of all time spent at any penetration testing engagement can revolve around writing and reporting the core findings of the engagement to the client. Explaining a highly technical finding in an elaborate penetration test engagement to someone not technical like the CEO of a company, the senior management or even the board of directors can be very challenging and frustrating at times. Mastery of communication, research and report writing is required to make sense of technically complex topics like specific vulnerabilities and their resulting exploits in a meaningful manner than an organization can use to make educated decisions to improve their own security posture.
LPT (Master), the next certification step after CEH and ECSA
EC-Council’s Licensed Penetration Tester(Master) is a natural evolution and extended value addition to its series of security related professional certifications. The LPT (Master) standardizes the knowledge base for penetration testing professionals by incorporating best practices followed by experienced experts in the field.
The objective of the LPT (Master) is to ensure that each professional licensed by EC-Council follows a strict code of ethics, is exposed to the best practices in the domain of penetration testing and aware of all the compliance requirements required by the industry.
The objective of Certified Security Analyst “pen testing” certification is to add value to experienced Information Security professionals
Unlike a normal security certification, the LPT (Master) is a program which trains security professionals to analyze the security posture of a network exhaustively and recommend corrective measures authoritatively. For many years EC-Council has been certifying IT Security Professionals around the globe to ensure these professionals are proficient in network security defense mechanisms. EC-Council’s license vouches for their professionalism and expertise thereby making these professionals more sought after by organizations and consulting firms globally.
You can read more about this at https://www.eccouncil.org/programs/licensed-penetration-tester-lpt-master.
Steps to Become an EC-Council Licensed Penetration Tester (LPT) via self-study mode:
- There is no predefined eligibility criteria for those interested in attempting the LPT (Master) exam. You can purchase the exam dashboard code here.
In order to proceed with the exam the below steps will need to be completed:
The exam dashboard code can be purchased here.
Upon successful purchase, the candidate will be sent the exam dashboard code with instructions to schedule the exam.
Note: The exam dashboard code is valid for 3 months from date of receipt.
Should you require the exam dashboard code validity to be extended, kindly contact [email protected] before the expiry date. Only valid/ active codes can be extended. The exam needs to be scheduled a min 3 days prior to the desired exam date. Exam slots are subject to availability.
Clause: Age Requirements and Policies Concerning Minors
The age requirement for attending the training or attempting the exam is restricted to any candidate that is at least 18 years old.
If the candidate is under the age of 18, they are not eligible to attend the official training or eligible to attempt the certification exam unless they provide the accredited training center/EC-Council a written consent of their parent/legal guardian and a supporting letter from their institution of higher learning. Only applicants from nationally accredited institution of higher learning shall be considered.
- EC-Council reserves the right to impose additional restriction to comply with the policy. Failure to act in accordance with this clause shall render the authorized training center in violation of their agreement with EC-Council.
- EC-Council reserves the right to revoke the certification of any person in breach of this requirement.
Renewal Cycle, Certification Fees & ECE Scheme
- The certification is valid for 2 years from the date of approval and members must then renew annually.
- For renewals, members will need to remit USD250 per annum which can be done at our online store.
- LPT (Master) certification falls under the ECE Policy. Members must ensure that they meet the ECE requirement.
Should you have any queries, please do not hesitate to write in to [email protected]
The Dashboard consists of:
- Detailed Instruction guide
- Exam scheduling service
- Exam launching service
- Exam progress tracking
- Sample report templates
- Report submission
- Status of report
Once you are ready to proceed with your exam, you need to ensure you understand the below:
- Cancellation requests are to be made 24 hours in advance.
- Rescheduling is possible 72 hours prior to the exam session
- Candidate has a grace period of 15 minutes to show up for the exam session.
- After 3 no-show cases the candidate will be required to seek special permission from the Director - Certification in order to proceed with their attempt.
- FAQs on exam proctoring will be available at https://proctor.examspecialists.com/User/FAQ.aspx
Note: All 3 levels of the challenges as well as the report is required to be submitted within the 45 days window. This includes re-attempts if any
Note: Should the dashboard expire the candidate will need to purchase a new kit.