CP-PEN Professional Program

Master the Art of
Offensive Security.

Cyber Pathshala Professional Penetration Tester (CP-PEN) is an elite career transformation program focusing on real-world exploits, AI-powered automation, and professional VAPT reporting.

75
Days Live
90
Days Intern
5
Projects
2
Certificates
Claim Your Spot Now
root@cp-pen:~# ./init_career_mode.sh
4.8M
Jobs Unfilled
6-15 LPA
Avg Starting Salary
$15.63T
Cybercrime by 2029
25K+
Learners Mentored

The Digital World Is Under Attack

Trusted by professionals across India's top tech hubs. Enterprises are actively hunting for these elite roles.

Penetration Tester

Simulate real-world attacks to discover security weaknesses before malicious actors do.

Bug Bounty Hunter

Secure global applications and earn massive rewards by responsibly disclosing vulnerabilities.

VAPT Analyst

Perform Vulnerability Assessments and Penetration Testing with elite reporting standards.

Security Consultant

Support compliance requirements and improve deep organizational security architecture.

The Master Syllabus

An exhaustive, no-secrets-withheld curriculum designed to build technical dominance. Every module, subtopic, and project is included.

Module: Intro to Pentesting

Introduction to Pentesting & What is Penetration Testing
VA (Vulnerability Assessment) vs PT (Penetration Testing)
Types of Pentests: Black Box, Gray Box, White Box
Methodology of Pentesting (PTES)
Notes Making Best Practices
FIND YOUR VICTIM - Information Gathering

Module: Network Scanning using AI

What is Network Scanning? & Goals of Network Scanning
Network Scanning using nmap
How to perform TCP Scans: Syn Scan, Service Scan, OS Scan, Aggressive Scan
Enumeration using nmap Scripts, msf and Tools

Module: Advanced Network Pentesting (Offensive) Using AI

Understanding Firewalls and their working
Ping Scan (-sn) & no Ping Scan (-Pn)
Random Host Scan, Source Port Change Tech, Fast Scan, Null Scan, Idle Zombie Scan
Xmas Scan, Decoy Scan, IP Spoofing, MAC Spoofing
Packet Size Modification Tech, Checksum Scan, ICMP Scan
Firewall Detection Techniques

Module: Advanced System Hacking using AI (Offensive)

All About System Hacking
System Hacking via: FTP, SSH, MYSQL, Telnet, Java, UnrealIRCD
System Hacking via: Root Shell, NFS, TOMCAT, VNC, SAMBA, php-config, Remote Login
System Hacking Using Reverse Shell and Bind Shell
Project 01 Perform Bug Hunting using Network Pen-Testing

Module: All About Web

Intro to Website and its Structure
All About Web Entities (Page, Functions & Parameters)
Types of Parameters
Important files & Extentions for hackers.
What is HTTP Request and Response?
How Hackers See HTTP Status Codes
The Power of HTTP Headers. (Request, Response & General)
Latest OWASP Top 10 Rules

Module: Footprinting & Reconnaissance of Website (AI)

A Detailed overview of Burpsuite
FIND YOUR VICTIM
Collect all TECH (Built With)
Deep Explore your Website
Finding the complete structure of website(using 10+ tools)
Guess the Stucture & Dir (AI)
Exploring the power of wayback machine
Exploring Source Code (HTML, CSS & JS)
Using Burp Intruder & Search Option
Using AI to Collect new & imp files

Module: Parameter Tempering Attack (AI)

Introduction to Parameter Tampering
How to Find VULN Param (TIPS)
How to Performing Parameter Tampering
Advance Parameter Tampering (Decoding, Guessing, Creative Attempts) using AI
Parameter Tempering on Cookies & Headers
Practicing Parameter Tempering

Module: Path Traversal Attacks (AI)

What is Path Traversal Attacks?
Different Types of PT Attacks?
Difference Between LFI & RFI?
LFI & RFI Methodology
Performing LFI
Advanced LFI Techniques
LFI Exploitation using Logs (WEB / Protocols logs)
Where to find LFI?
Performing RFI & Advanced RFI Exploitation
What is Directory Traversal
DT Methodology? & Performing DT
Creative Ways to find DT & Exploiting DT
What is file upload Vulnerability?
Methodology of File Upload Attack
Testing & Exploiting File Upload Vuln
Countermeasures

Module: Powerfull Injection Attacks (AI)

What is Injection Attacks? & List of Injection Attacks
What is SQL Injection? & Types of SQL Injection
Methodology of SQli for experts.
Performing SQLi
Advanced SQLi Testing + Anonymous using tor
What is XSS? & Types of XSS Injection
Methodology of XSS for experts.
Performing XSS
Advanced XSS Testing + Hidden Param
What is Command Injection? & Methodology
Testing for Command Injection?
What is HHI? & Performing HHI
Countermeasures

Module: Server Side and Client side Attacks(AI)

What is CSRF?
Methodology of CSRF Attack & Performing CSRF
Advanced Ways to find CSRF.
What is SSRF?
Methodology of SSRF Attack & Performing SSRF
Project 02 Perform Bug Hunting using WEB Pen-Testing

Module: Introduction to Apk Pentesting

What is Android?, Application?, Manifest.xml
Major components of an apk & Methodology
Dalvink VM Vs ART Run time

Module: Lab Setup for APK Pen-testing

Install Genymotion and setup android
Install Android in Virtual Box
Setup Insecurebank v2

Module: Offensive APK Penetration Testing(AI)

Pen Testing using MobSF & 4 ways to Decompiling
Bugs: Insecure Password Storage, Hidden Buttons, Developers bug, Insecure Login
Bugs: Debug Mode Enabled, Backup Mode Enabled, Insecure Logging Advance
Reverse Engineering
Project 03 Perform Bug Hunting using APK Pen-Testing

Module: Basic Concepts of Python

Intro, Lab Setup, Variables, Data Types, Operators
IF/ELSE/ELIF, Match/For/While Loop, Functions
Libraries, Hackers Fav Libraries, OS and Subprocess

Module: Offensive / Automation Python Scripts(AI)

Python Program to Perform network scanning using nmap / NC & Bypass Firewalls
Python Program to get new directories
Python Program to perform SQLi using sqlmap
Python Program to hack with Jarvis

Module: Shell/Bash Scripting

What is Shell / Bash programming?, Variables, Operators, IF, CASE, Looping
Change Private IP, Mac Address, Perform Monitor mode using shell
Nmap Scanner in Shell & Perform SQli using shell sqlmap
Project 04 Real world Problem Solving Python Program for Pen-Testers
Project 05 Real world Problem Solving SHELL Program for Pen-Testers

Module: Real Values for you(AI) (Career Prep)

All About Bug Bounty Methodology and Reporting
All About Pen-Test Documentation
Career Counselling & Interview Preparation
Resume Building & Linkedin Profile Updation

Module: Performing real world Pen testing (Internship)

Information gathering of target
Performing Network, Web/APK Pen-Testing in real environments
Create Proper Documentation with Findings

Your Professional Arsenal

Master the exact software stack utilized by Enterprise Red Teams.

Nmap Burp Suite MobSF Python 3 Bash Scripting Metasploit SQLmap Genymotion AI Recon Bots OWASP Top 10
Exclusive Feature

90-Day Industry
Internship Phase

The number one reason beginners fail technical interviews is a lack of experience. Bridge the gap between theory and execution by working on live targets.

  • Perform Live Vulnerability Assessments
  • Write Executive-Level VAPT Reports
  • Receive Official Internship Letter

Certificate 1: CP-PEN Completion

Validates your mastery of Network, Web, and APK penetration testing methodologies.

Certificate 2: Industry Experience

Verifies your 90 days of practical bug hunting and professional reporting experience.

Learn From The Best

Ashish Kumar mentor at Cyber Pathshala

Ashish Kumar

Founder & CEO, Cyber Pathshala

"Helping aspiring cybersecurity professionals build practical skills through real-world labs, offensive security training, internships and career-focused mentorship. Try Till You Succeed."

8+
Years Experience
25K+
Learners Impacted

Student Success Stories

Real Feedbacks From Cyber Pathshala Students

Cybersecurity Journey

Student transformation story

Ethical Hacking Review

Real learning experience

Placement Success

Student feedback

Hands-on Learning

Cyber Pathshala experience

Career Upgrade

Student achievement story

Beginner To Expert

Cybersecurity growth journey

Cybersecurity Journey

Student transformation story

Ethical Hacking Review

Real learning experience

Placement Success

Student feedback

Hands-on Learning

Cyber Pathshala experience

Initialize Your Career Upgrade

Next cohort filling fast. Secure your seat today.

Original Program Fee
₹50,000
₹25,000/-
50% Scholarship Discount Applied
Limited Seats Available

Direct Bank Transfer

QR Code

Scan with any UPI App

[ cyber.pathshala@ybl ]
Account Name [ Ashish Kumar ]
Bank Name [ CANARA BANK ]
Account No.
[ 6313101000986 ]
IFSC Code
[ CNRB0006313 ]

Book Your Seat

Fill out the form below or chat directly on WhatsApp.

Or reach out instantly:

Chat on WhatsApp