The Hack The Box Certified Penetration Testing Specialist (CPTS) is a hands-on, project-based certification that requires compromising a simulated enterprise environment and submitting a professional-grade report. Exam Structure
Format: Hands-on, non-proctored environment with 10 days total for the exam and reporting.
Grading: Points-based system. You need at least 85 points out of 100 to pass.
Reporting: A commercial-grade penetration testing report is a mandatory requirement for passing.
Attempts: Each voucher includes two attempts, with feedback provided after a failure to help with the retake. Core Topics Covered
The exam evaluates intermediate-level technical competency across several domains:
Network & Infrastructure: Information gathering, reconnaissance, and attacking Windows and Linux targets.
Active Directory (AD): Deep dives into AD penetration testing, including pivoting and lateral movement. cpts exam
Web Applications: Specialized web application penetration testing and manual/automated exploitation.
Post-Exploitation: Vulnerability assessment, privilege escalation, and risk communication. Preparation Resources
Certified Penetration Testing Specialist Review (with Pro Labs)
HTB Certified Penetration Testing Specialist (CPTS) is an intermediate-level certification from Hack The Box (HTB)
that assesses technical competency in ethical hacking and penetration testing. It is known for its rigorous, hands-on 10-day exam window. Exam Structure & Logistics
: Hands-on practical lab simulating a real-world enterprise network environment [13]. Time Limit
total for both technical exploitation and report submission [4, 5]. Objectives The Hack The Box Certified Penetration Testing Specialist
across approximately 8 machines (Linux and Windows) [4, 13]. Passing Score : Requires at least 85 out of 100 points
(typically 12/14 flags) and a professional commercial-grade report [5, 7, 13]. Prerequisite : Candidates must first complete 100% of the Penetration Tester job-role path on HTB Academy [1, 6]. Core Skills Tested
The exam evaluates your ability to perform end-to-end penetration testing [1, 2, 17]: Information Gathering : Profiling and navigating target networks. Vulnerability Assessment : Identifying manual and automated exploitation avenues. Exploitation
: Web application attacks (OWASP Top 10), password cracking, and initial foothold acquisition [17, 30]. Post-Exploitation
: Pivoting through subnets, lateral movement, and privilege escalation in both Linux and Windows [17]. Active Directory
: In-depth exploitation of AD environments, which is often considered more extensive than other certifications like OSCP [19].
: Documenting vulnerabilities and remediation advice in a professional report using a provided template [6, 7]. Preparation Resources HTB Academy Penetration Tester Path is the primary preparation tool [1, 20]. Practice Labs : Many candidates use Pro Labs like Dante, Zephyr, or Offshore CPTS Academy Training Path (Penetration Tester Job Role
for additional experience in larger network environments [21, 29]. Community Tips
: Taking thorough notes and screenshots during the training path is critical, as you can reference them during the non-proctored 10-day exam [10, 19]. or advice on report writing for the CPTS?
When the exam starts, time management is your biggest enemy.
This is where the CPTS exam destroys the competition.
Detailed Breakdown: Most candidates buy the "Penetration Tester Job Role Path" for $400. This grants you 3 months of lab access (extendable) and one exam attempt. If you fail, a retake voucher costs roughly half the price of a new path.
Comparison: OSCP costs ~$1,599. CPTS costs ~$400. You can fail the CPTS 3 times and still spend less than one OSCP attempt.
The CPTS exam is not a standard 24-hour sprint. It utilizes a flexible 10-day window.