What happens on the Day 10 capstone assessment?

You receive a scoped simulated target environment representing a realistic enterprise network. You conduct a penetration test using the methodology and tooling covered across Days 1 to 9. The senior practitioner observes your work at key points, reviews your methodology decisions, and assesses your final engagement report. Three outcomes: certificate awarded, deferred with written feedback, or not awarded.

Is XEHP recognised for UK government penetration testing work?

XEHP aligns to NCSC CHECK methodology and NIST SP 800-115, which are the frameworks UK government and NHS procurement teams reference for penetration testing services. This alignment supports Direct Award procurement conversations for government security testing contracts.

Which tools will participants work with during the programme?

Nmap, Metasploit Framework, Burp Suite Professional, BloodHound, Impacket suite, Responder, CrackMapExec, Pacu, ScoutSuite, ROADtools, GoPhish, and custom Python and Bash scripting. All tool use is in authorised lab environments under instructor supervision.

What are the salary prospects for XEHP holders?

Senior penetration testers in the UK market earn £60,000 to £120,000. Independent penetration testing consultancy rates are £600 to £1,200 per day. The signed Practitioner Assessment Report gives XEHP holders documented portfolio evidence that distinguishes them from MCQ-certified candidates.

XEHP: Xcademia Ethical Hacker Practitioner

Name: XEHP: Xcademia Ethical Hacker Practitioner
Price: 5995 GBP
Availability: InStock

Modern organisations face adversaries who do not follow a textbook. The penetration tester who can only replicate what a certification study guide describes is not the practitioner organisations need. XEHP is built for professionals who want to demonstrate genuine offensive capability, methodically, ethically, and professionally, across the full attack surface of a modern enterprise.

Across ten instructor-led days, participants build competency across the complete penetration testing lifecycle: from OSINT and reconnaissance through network infrastructure exploitation, active directory attacks, web and API security testing, cloud penetration, container security, advanced evasion, and professional engagement reporting. Where CEH v13 covers 20 modules across 5 days then sends candidates alone to a 125-question multiple choice exam, XEHP puts a senior practitioner in the room for all 10 days and evaluates actual work on Day 10.

On Day 10, participants conduct a scoped simulated engagement against a realistic enterprise target. The senior practitioner observes methodology, tooling decisions, and report quality. A Practitioner Assessment Report is issued alongside the XEHP certificate. Aligned with PTES, MITRE ATT&CK v14, OWASP Top 10 2025, NCSC CHECK methodology, NIST SP 800-115, and DoD 8140.

Hands-On Learning

Live lab engagements every day covering network scanning, active directory exploitation, web application and API hacking, cloud misconfiguration testing, container escapes, and evasion against defensive tooling.

Mentor-Led Sessions

Mentor-led sessions mapping real adversary tradecraft to MITRE ATT&CK v14, covering professional engagement report writing, CVSS risk rating, and executive communication of findings.

Flexible Delivery Options

Ways to Learn

Choose the learning format that works best for you and your team

10 Days

Small cohorts

Exam & Certification Information

Everything you need to know about the certification exams

On successful completion of XEHP: Xcademia Ethical Hacker Practitioner, learners are assessed on the final day through a supervised practitioner scenario. Three outcomes are possible, Certificate Awarded, Certificate Deferred, or Not Awarded. The Practitioner Assessment Report and certificate are issued together. Verified at xcademia.com/verify.

Certificate Awarded

Assessed competent on the final day.

Certificate Deferred

Resit available on a future cohort.

Not Awarded

Attendance record issued. Reassessment possible.

CEH v13 is 5 days of training followed by 125 multiple choice questions. XEHP is 10 instructor-led days ending in a supervised real engagement on Day 10. The practitioner observes your methodology and produces a signed assessment report. Employers see what you demonstrated, not a test percentage. CEH costs over $2,800 with renewal fees every 3 years. XEHP is one price, all in, no renewal fees.

XEHP: Xcademia Ethical Hacker Practitioner

Course Overview

Hands-On Learning

Mentor-Led Sessions

Career-Ready Skills

Learning Outcomes

Prerequisites

Detailed Syllabus

Domain 1 : Methodology, Reconnaissance and Attack Planning

Module 1 : Engagement Methodology and Legal Framework

Topics Covered:

Module 2 : Reconnaissance and OSINT Tradecraft

Module 3 : Scanning, Enumeration and Vulnerability Analysis

Module 4 : Attack Planning, Reporting Foundations and MITRE Mapping

Domain 2 : Network, Infrastructure and Active Directory Exploitation

Domain 3 : Web, API and Application Security Testing

XEHP: Xcademia Ethical Hacker Practitioner — Capstone Project

Framework Alignment

PTES

NIST SP 800-115

MITRE ATT&CK v14

OWASP Top 10 2025

OWASP API Top 10

NCSC CHECK

NIST CSF 2.0

DoD 8140

Skills You'll Gain

Career Progression

Ways to Learn

Live Online

Prefer a Faster, Personalised Route into IT?

Exam & Certification Information

Xcademia Certification Programme

Frequently Asked Questions

Ready to Start Your Learning Journey?