Pentesting Fundamentals - SCORM

Pentesting Fundamentals Course - SCORM

This course is taught in online mode and consists of 7 units and practical activities. The duration of the course is 60 hours , which are distribute between content and collaboration tools. Upon completion, students will receive a certificate of completion.

Training is done through our Virtual Campus , with this modality you will have all the educational content on the course platform and it will be accessible, from the day the course starts, 24 hours a day, every day of the week. The student will also have access to participation forums , as well as a continuous tutoring .

The course is taught in distance learning modality (100% bonus option) and in-person and remote training activities can also be carried out on demand.

• Access to the platform: 8 weeks
• Individualized support

Introduction to the Pentesting Fundamentals course

This course aims to provide a general introduction to Pentesting for non-technical users. It focuses on explaining key concepts, the importance of computer security , the phases of Pentesting , and how non-technical users can contribute to maintaining a secure digital environment.

Course aimed at

This course offers a solid foundation in Pentesting and cybersecurity for non-technical users , strengthening their role in protecting digital environments. Pentesting Fundamentals for Non-Technical Users Course.

Course Content Pentesting Fundamentals

Unit 1: Introduction to Pentesting

• Objective: Understand what Pentesting is and its relevance in cybersecurity.
• Topics:
  • Definition of Pentesting.
  • Difference between Pentesting and ethical hacking.
  • Importance of Pentesting in companies.
  • Famous cases of cyberattacks and how they could have been prevented.
• Hands-on Activity: Identify common vulnerabilities in simulated examples.

Unit 2: Basic Cybersecurity Concepts

• Objective: To become familiar with the fundamental concepts related to digital security.
• Topics:
  • What are vulnerabilities, threats and risks.
  • Most common types of cyberattacks (phishing, ransomware, etc.).
  • Cybersecurity best practices for non-technical users.
• Practical activity: Detect suspicious elements in a fictitious email.

Unit 3: The Phases of Pentesting

• Objective: To know the basic stages of a Pentesting process.
• Topics:
  • Recognition: what it is and how it is done.
  • Scanning: identifying potential weak points.
  • Exploitation: Simple examples of how attackers can exploit vulnerabilities.
  • Reporting: The importance of documenting findings.
• Practical activity: Create a fictitious mini-report of vulnerabilities observed in a simulation.

Unit 4: Pentesting Tools

• Objective: Introduce common tools used in Pentesting (without having to operate with them).
• Topics:
  • What are Pentesting tools? (Example: Nmap, Metasploit, etc.)
  • How they work in a basic way.
  • Role of non-technical users in interpreting results.
• Practical activity: Analyze fictitious results generated by tools and discuss them.

Unit 5: How to Identify Risks in Your Organization

• Objective: To train users to identify potential risk areas in their work environments.
• Topics:
  • Warning signs of an unsafe environment.
  • Basic security assessment of devices and networks.
  • User role in attack prevention.
• Practical activity: Checklist for self-assessment of workplace safety.

Unit 6: Role of Non-Technical Users in Pentesting

• Objective: To highlight the importance of non-technical user collaboration in security processes.
• Topics:
  • How to report incidents effectively.
  • Contribute to security through safe digital habits.
  • Importance of continuing education in cybersecurity.
• Practical activity: Incident report simulation with practical examples.

Unit 7: Implementing a Safety Culture

• Objective: To promote the construction of a safety mentality in the work and personal environment.
• Topics:
  • Raising awareness of cybersecurity as a shared responsibility.
  • How to organize workshops or awareness campaigns in the company.
  • The importance of updating knowledge.
• Practical activity: Create a basic plan for a cybersecurity awareness campaign.

Course Evaluation

• Final exam: Multiple choice questions on main concepts.
• Hands-on project: Create a fictitious cybersecurity report based on a provided simulation.

Prerequisites

To get the most out of this introductory course on Pentesting and Cybersecurity for non-technical users, students should preferably have the following prerequisites:

Basic computer knowledge:

• Familiarity with using operating systems (Windows, macOS, or Linux).
• Basic understanding of computer terms such as networking, software and hardware.

Basic experience in the digital environment:

• Ability to use web browsers and email programs.
• Basic knowledge of file and folder management.

Cybersecurity Awareness:

• Previous experience dealing with situations such as suspicious emails or password-related issues can be helpful.
• Interest in understanding how to protect personal and corporate data.

Ability to work in a team and communicate:

• Given the focus on collaboration between non-technical profiles, it is helpful for students to have interpersonal and communication skills.

Interest in cybersecurity and Pentesting:

• Curiosity or motivation to learn concepts related to data protection and computer security.

Openness to practical learning:

• Willingness to perform practical activities, such as identifying vulnerabilities in simulated examples or analyzing fictitious results generated by tools.

Although the course is designed for non-technical users , these basic requirements will help participants better integrate the concepts and practical activities presented.

Other training modalities

If you are interested in taking this course in person or online, please contact us:

• Mail: info@nanforiberica.com
• Phone: +34 91 031 66 78
• WhatsApp: +34 685 60 05 91