Cyber Scheme Team Leader (CSTL) Infrastructure Exam
£1600+VAT
This assessment tests candidates’ knowledge and expertise of common network services and weaknesses along with an understanding of operating systems and networking.
A pass in this highly regarded technical qualification is one of the mandatory requirements for both the Principal and Chartered Levels Professional Titles with the UK Cyber Security Council (security testing).
The industry-leading exam suitable for individuals who require formal certification of Expert level understanding of the theory and practical elements of cyber security and Penetration Testing.
In order to pass the CSTL-INF exam, a candidate must demonstrate all of the following:
- Appropriate interaction with the commissioning client;
- Knowledge of the process of conducting a penetration test including legal and ethical issues;
- Core capability to exploit vulnerabilities of MSWindows devices or systems;
- Core capability to exploit vulnerabilities of Unix devices or systems;
- Core network mapping capability;
- Advanced capability to exploit MSWindows OR Unix OR network devices.
The exam is structured to simulate a real-world penetration test for a client. It comprises three phases:
Phase 1 – Scoping
Candidates will share a common scoping briefing. Following the common scoping briefing, individually candidates will have up to 10 minutes to ask questions concerning the scope of the penetration test. During the individual scoping session, the Assessor will play the role of the commissioning client. The candidate’s performance during the individual scoping session will form part of the assessment.
Phase 2 – Practical Penetration Test
The candidate’s laptop will be connected to the assessment infrastructure, from which they will perform the practical penetration test, as defined in the scoping session. Connectivity will end after 4.5 hours. During the final 30 minutes the candidate will be advised to prepare for the interview which follow.
Phase 3 – Interview
During the interview the candidate will be required to produce a network diagram on a white board or flip chart. The network diagram must logically detail the infrastructures architecture at the network/IP layer (OSI layer 3), clearly showing all hosts, interfaces, subnets, subnet masks, firewalls and routes. The interview is an assessed component of the examination.
A candidate will also be expected to inform the commissioning client (Assessor) of the significant aspects/findings during the practical penetration test they conducted.
Exam Topics
The technical skills candidates will be expected to demonstrate include:
Networking
- Understanding misconfiguration of protocols such as SMTP, NFS, FTP, DNS
- Advanced methods of information enumeration
- the ability to map a network
- port scanning
- Identification of valuable hosts on a network
- Traffic analysis
- Wireless networking weaknesses
- Pivoting
- Firewall evasion
Web applications
- Understanding basic web application vulnerabilities such as SQLi, XSS, LFI/RFI
Host exploitation
- Understanding of differences between OS’s
- Identification of server vulnerabilities
- Exploitation of server vulnerabilities
- Privilege escalation
- Breakout techniques.
These domains form the core knowledge required to pass a CSTL (INF) exam. Click on them to see related topics in detail.
We offer comprehensive training for our technical assessments – find out more below:
Practical Information
Walking directions to the nearest Pay & Display car park can be found here.
There are two entry points to the Eagle Tower building where our exam rooms are located. Please make your way to the main entrance on Montpellier Drive – look for the large eagle statue outside the revolving doors. When you arrive, please introduce yourself at reception and make your way to the seats shown here, where you will be met by your invigilator.
Our exam rooms are full of natural light, with window blinds and overhead fluorescent lights when needed.
We have drinking water, coffee and tea making facilities in our exam rooms. There is an onsite cafe selling hot and cold food in the ground floor reception area. If you have any allergies please let us know at time of booking.
There are accessible toilets on every floor.
There will be a level of ambient noise due to the proximity of other offices. If needed please supply your own earplugs or ear defenders when taking an exam. Please note this will not be appropriate for our training courses.
Our rooms are designed specifically to allow for maximum interaction between assessor and candidate, within specific guidelines stipulated by NCSC regarding assessor and candidate ratios. These may change but we currently work to:
CSTM exam – maximum of 6 candidates plus assessor
CSTL exams – maximum of 6 candidates with assessor plus invigilator
CSTM training – maximum of 12 delegates plus trainer
Advanced Mentoring – maximum of 6 delegates plus trainer
The Cyber Scheme believe everyone should have access to a career in security testing. We are available to discuss any concerns you have and are more than happy to make reasonable adjustments for any candidate who requires them during examinations.
These reasonable adjustments are to ensure you are given an equal opportunity to demonstrate the necessary knowledge, skills and behaviours required. We recognise that not all disabilities are visible.
We have a range of reasonable adjustments we can offer depending on what difficulty you might face. If you request an adjustment which we are unable to offer, we will give you a reason why we cannot offer it. This might be because it maps to a key Knowledge, Skill or Behaviour that we have to assess against within the certification. If that is the case, we will tell you which aspect we think would not be properly assessed.
There may be background noise during an assessment. Please bring (or ask for) ear plugs / ear defenders or listen to music if background noise is likely to affect your concentration.
Mobility
Access to all of our facilities is suitable for people with mobility issues. Should any other special facilities be required please get in touch at time of booking. For some reasonable adjustments, such as access to a disabled parking space, we will need to see supporting documentation around the condition to allow us to apply for this access for you. No information will be retained or stored once the request is validated.