Register Now
Register Now

PEN-200: Penetration Testing with Kali Linux PWK/OSCP

Training Overview

PEN-200: Penetration Testing with Kali Linux (PWK/OSCP) is a rigorous, instructor-led offensive security training at CSA XCON 2026, designed to prepare participants for real-world penetration testing engagements and the globally respected OSCP certification.

This training focuses on methodology, discipline, and hands-on exploitation not automated tooling. Participants will learn how to think like professional penetration testers: enumerate deeply, exploit manually, escalate privileges, pivot through networks, and clearly report findings.

PEN-200 is widely regarded as the gold standard foundation for ethical hackers, red teamers, and security professionals entering advanced offensive roles.

About the Training at CSA XCON 2026

This course mirrors real-world pentesting workflows used by professional consultancies and red teams.

Key highlights include:

  • Manual exploitation mindset (no point-and-click hacking)
  • Strong focus on methodology and documentation
  • Windows, Linux, Web, and Active Directory attacks
  • Exam-aligned preparation for OSCP
  • Long-term lab access for skill reinforcement

The training aligns perfectly with CSA XCON’s mission to deliver career-defining, practitioner-level cybersecurity education.

What You Will Learn

Penetration Testing Foundations
  • Penetration testing methodology
  • Professional note-taking workflows:Obsidian & Cherry Tree
  • Report writing for technical and executive audiences
Network Discovery & Attack Fundamentals
  • Network scanning and enumeration with Nmap
  • Password cracking strategies
  • Searchsploit and exploit research
  • Payload generation using MSFVENOM
Linux Attacks & Privilege Escalation
  • Manual Linux enumeration
  • LinPEAS usage and interpretation
  • Abusing misconfigurations and insecure components
  • Local privilege escalation techniques
Windows Attacks & Privilege Escalation
  • Windows authentication fundamentals
  • Manual enumeration and WinPEAS
  • Abusing misconfigurations and insecure components
  • Exploiting privilege escalation vulnerabilities
Web Application Attacks
  • Burp Suite workflow
  • OS Command Injection
  • SQL Injection
  • Directory Traversal
  • LFI & RFI
  • File upload exploitation
Lateral Movement & Pivoting
  • Pivoting between networks
  • Tunneling and port forwarding
  • Internal network exploitation
  • Directory Traversal
  • LFI & RFI
  • File upload exploitation
Active Directory Attacks
  • Active Directory fundamentals
  • Manual enumeration
  • Automated enumeration:BloodHound & SharpHound
  • Authentication attacks:PSExec, Pass-the-Hash (PtH), Overpass-the-Hash (OPtH) & Pass-the-Ticket (PtT)

Training Experience & Expectations

  • Hands-on, lab-driven learning
  • Realistic enterprise environments
  • Manual exploitation emphasis
  • OSCP-style challenges and workflows
  • Long-term lab practice after the event

Participants leave with battle-tested offensive skills, not just theoretical knowledge.

Key Takeaways

  • Mastery of professional penetration testing methodology
  • Ability to exploit Linux, Windows, Web, and AD environments
  • Strong enumeration and privilege escalation skills
  • OSCP exam readiness and confidence

Who Should Attend

This training is ideal for:

  • Security professionals working in AppSec, Pentesting, or Red Team roles
  • IoT and Embedded Security researchers
  • Blue team members responsible for device security assessments
  • Engineers and architects involved in designing secure connected products
  • Students and professionals looking to move into hardware and IoT security

If you are comfortable with:

  • Linux environments
  • Basic scripting
  • Using simple hardware tools
you have the right foundation for this training.

Skill Level

Beginner to Intermediate
(No prior hardware hacking experience required)
Participant Requirements

Participants should bring:

  • A laptop with VMware Workstation installed
  • Minimum 100GB free disk space
  • Local admin access on the system
  • At least two USB-A ports and an RJ45 port (or suitable adapter)
  • Ability to access system BIOS

Apple systems are not recommended due to virtualization limitations.

What Participants Will Receive

Each participant receives a One-Year Learn Unlimited Subscription (valued at $6,099), which includes:

  • 1 year of unlimited course access
  • Unlimited exam attempts during subscription
  • 365 days of lab access
  • PEN-103 + unlimited KLCP exam attempts
  • Proving Grounds Practice labs
  • Multiple course material downloads
Buy Ticket Now