Cyber Academy Certified Practitioner

Overview

Prove You Can Execute — In a Real Environment
Most cybersecurity certifications measure what you know.
CACP certification proves what you can actually do.
You are not tested through multiple-choice questions or theoretical scenarios. You operate inside a live infrastructure where you must identify vulnerabilities, move through systems, and achieve defined objectives under real-world conditions.
No study guides. No sample questions. No safety nets.
This is a certification built for execution under pressure.

WHAT THE CERTIFICATION COVERS

CACP assesses your ability to operate across the full cybersecurity lifecycle — not in isolation, but as a connected operational system.
You will demonstrate capability in:

Systems Exploitation — Linux and Windows environments, privilege escalation, and persistence mechanisms
Network Traversal — Lateral movement, pivoting, and operating across segmented infrastructure
Application Attacks — Web, API, and mobile exploitation in realistic conditions
Cloud Compromise — Identity abuse, misconfigurations, and data extraction across AWS/Azure
Defense Evasion — Operating within monitored environments without triggering detection systems
SOC Operations — Analyzing alerts, triaging incidents, and identifying attack patterns using SIEM platforms
Traffic Analysis — Investigating network traffic with Wireshark, identifying malicious activity, and reconstructing attack chains
Digital Forensics — Evidence collection, memory analysis, and timeline reconstruction from compromised systems
Incident Response — Containment, eradication, and recovery procedures under active attack conditions
Professional Reporting — Structured, evidence-based documentation of all findings and actions taken

This is not a domain-specific test. This is a full-spectrum assessment of operational capability across offensive and defensive disciplines.

WHO IS THE CERTIFICATION FOR ?

CACP certification is designed for professionals who need to demonstrate real, hands-on ability — not just theoretical knowledge:

Penetration testers and offensive security practitioners — Who need proof of execution capability beyond CTF wins or lab completions
Cybersecurity Operator pathway graduates — Who have completed the 15-course curriculum and are ready to validate their skills under exam conditions
Security professionals transitioning into technical roles — SOC analysts, threat hunters, or incident responders moving into offensive operations
Independent operators — Self-taught practitioners seeking an objective, evidence-based benchmark of their capability
Anyone who wants employer-recognizable proof — That they can execute, not just talk about techniques

If you’ve built the skills but lack the credentials to prove it — this certification exists for you.

WHAT IS THE CACP CERTIFICATION EXAM?

The certification consists of two phases over 48 hours:

Phase 1 — 24-Hour Hands-On Examination
You operate inside a live infrastructure built to mirror real networks and defenses.
Offensive scenarios — Identify attack paths, exploit systems, escalate privileges, move laterally, and achieve defined objectives.
Defensive scenarios — Analyze SIEM alerts, investigate suspicious traffic with Wireshark, perform memory forensics on compromised systems, and respond to active incidents.
You work under a strict 24-hour time limit.
No hints. No walkthroughs. No do-overs.
Phase 2 — 24-Hour Professional Report Submission
You document your entire process — methodology, findings, proof of execution, attack chain reconstruction, incident analysis, forensic evidence, and remediation recommendations.
Your report is evaluated to the same standard used in real penetration testing and incident response engagements.
Passing requires both execution and documentation. You must prove you can do the work and communicate what you did.

WHY CACP CERTIFICATION IS DIFFERENT

No Multiple Choice — Your results are based entirely on what you accomplish in a live environment

Realistic Infrastructure — Mirrors real networks, defenses, monitoring, and complexity

Full-Spectrum Evaluation — Assesses offensive skills (exploitation, evasion) and defensive skills (detection, forensics, incident response) in the same exam

Professional Reporting Standard — Your documentation is held to the expectations of actual penetration testing and incident response deliverables

Proof of Capability — You leave with evidence of what you can execute, not just what you studied

Both Red and Blue — Most certifications test offense OR defense. CACP tests both.

No Exam Dumps — The environment changes. You can’t memorize your way through.

Built by Practitioners — Designed by people who conduct real penetration tests and incident investigations, not academics writing theory exams

Certificate Pricing

Original price was: 99,00 €.Current price is: 89,00 €.

Ready to upgrade your brain?

Pick your path — online or on-site. Commit, train, and transform. This isn't a course. It's a proving ground.

The future's not waiting. Neither should you.

Frequently Asked Questions

Mission-critical information for prospective operatives

Do I need to complete the CACP pathway courses before sitting the exam?

No — prior completion of the 15-course pathway is not a requirement. The certification is open to penetration testers, SOC analysts, self-taught practitioners, and anyone else who believes they have the skills. However, if you are new to the field, the pathway is strongly recommended as preparation, since the exam tests full-spectrum operational capability with no hints or safety nets.

What exactly happens during the 24-hour hands-on phase?

You are placed inside a live infrastructure that mirrors real enterprise networks, complete with active defenses and monitoring systems. You must identify attack paths, exploit vulnerabilities, escalate privileges, move laterally across segmented systems, and achieve defined objectives — all while evading detection. You also face defensive scenarios: analyzing SIEM alerts, investigating traffic with Wireshark, and performing memory forensics on compromised hosts. There are no hints, walkthroughs, or second chances.

What does the report phase require, and how is it graded?

After the 24-hour exam, you have a further 24 hours to submit a professional written report. It must cover your full methodology, evidence of each objective completed, attack chain reconstruction, forensic findings, and remediation recommendations. The report is evaluated to the same standard used in real penetration testing and incident response engagements — not just as a summary, but as a deliverable you would hand to a client. Both phases must be passed to earn certification.

How is CACP different from certifications like OSCP or CEH?

Most certifications test either offense or defense — not both. CACP is a full-spectrum assessment: you are evaluated on exploitation and evasion alongside detection, forensics, and incident response in the same exam. There are no multiple-choice questions at any stage. Because the environment is live and changes, there is no way to prepare through memorization — only genuine capability gets you through. Passing requires you to prove you can execute under pressure and document your work to a professional standard.

Can I retake the exam if I do not pass?

Yes, retakes are available. Each additional attempt is available for purchase separately. We recommend reviewing your report feedback carefully before reattempting, as the report phase is a common area where candidates fall short even after strong technical performance.

Learn cybersecurity from the ground up. No fluff, no theory that doesn't matter. Real skills, real fast.

Train your team like your business depends on it. Because it does. Certifications, labs, and expertise that actually protects.

We built this for people who want results, not credentials that look good on paper. Expert-led. Hands-on. Real impact.

Learn to identify and secure common web vulnerabilities including SQLi, XSS, auth flaws, and insecure APIs through hands-on attack scenarios.

Practice Android and iOS security testing with app analysis, traffic interception, reverse engineering, and mobile exploit techniques.

Build Blue Team and SOC skills through threat detection, incident response, log analysis, SIEM workflows, and threat hunting.

Build practical cybersecurity skills and develop real-world operational capability across offensive security, defensive operations, and modern cyber workflows.

Offensive Operator

Learn modern penetration testing, exploitation, and offensive security methodologies through hands-on real-world attack scenarios.

Defensive Operator

Develop practical Blue Team and SOC operations skills focused on threat detection, incident response, and cyber defense operations.

Build core cybersecurity skills and validate foundational operational knowledge.

Specialist

Specialized certifications designed to develop operational cybersecurity expertise.

Expert

Advanced certifications designed for experienced security practitioners.

What's actually happening in cybersecurity. Stories, trends, and actionable insights.

We dig into the data so you don't have to. Research from our community of experts.

Learn from the people on the front lines. Expert-led conversations, live Q&A, and sessions built for practitioners.