CREST Practitioner Security Analyst (CPSA)

Advanced Proctored multiple-choice style exam Pass: Provider-set pass mark (commonly around 60%, veri… $650

CPSA is a practitioner-level assessment emphasizing pentest fundamentals, methodology, and professional judgement. 2026 prep should blend theory revision with structured practical validation to strengthen exam confidence.

Official Page

IssuerOther

FormatProctored multiple-choice style exam

Duration~2 hours (indicative)

Pass ScoreProvider-set pass mark (commonly around 60%, veri…

Valid For3y

Overview Syllabus (5) Tools (6) Cheat Sheets (2) Labs (3)

Recommended Tools

BloodHound CE Essential

AD Mapping

Visualize Active Directory attack paths.

installdocker compose up -d # bloodhound stack

usagebloodhound-python -d <domain> -u <user> -p <pass> -ns <dc_ip> -c all

NetExec Essential

Enumeration

SMB/WinRM/RDP/LDAP assessment and credential checks.

installpipx install netexec

usagenetexec smb <target> -u <user> -p <pass>

Nmap Essential

Recon

Network discovery and service fingerprinting.

installsudo apt install -y nmap

usagenmap -sC -sV -Pn <target>

Hashcat

Credential Attacks

Password cracking for recovered hashes.

installsudo apt install -y hashcat

usagehashcat -m <mode> <hashes> <wordlist>

Metasploit Framework

Exploitation

Exploit/proof-of-concept and post modules.

installsudo apt install -y metasploit-framework

usagemsfconsole

Ligolo-ng

Tunneling/Pivoting

Userland pivoting and tunnel setup.

installgo install github.com/nicocha30/ligolo-ng/cmd/...@latest

usageligolo-proxy -selfcert