Certified Azure Red Team Professional

Advanced Practical Azure/Azure AD attack-path exam + report Pass: Provider-defined objective threshold; verify late… $249

CARTP emphasizes practical Azure/Azure AD offensive security with identity-centric attack chains. For 2026, prioritize Entra ID attack primitives, token abuse, and tenant-level impact articulation.

Official Page

IssuerAltered Security

FormatPractical Azure/Azure AD attack-path exam + report

Duration~24h practical window (indicative)

Pass ScoreProvider-defined objective threshold; verify late…

Overview Syllabus (5) Tools (6) Cheat Sheets (2) Labs (3)

Full Syllabus

Cloud Recon & Identity Enumeration 20%

Tenant/account discovery, IAM principal analysis, trust relationships.

Identity & Access Abuse 25%

Privilege escalation paths, role abuse, token misuse and policy weaknesses.

Data Plane & Service Misconfiguration 20%

Storage exposure, compute metadata abuse, serverless/container weaknesses.

Hybrid/Control Plane Attack Paths 20%

Federation, CI/CD, key management, conditional access and cross-service chaining.

Detection, Reporting & Remediation Priorities 15%

Cloud-native logging evidence, business impact, prioritized fixes.