In the ever-evolving landscape of cybersecurity, certifications play a vital role in validating expertise and professionalism. One of the most respected bodies offering such credentials is CREST (Council of Registered Ethical Security Testers), an international not-for-profit accreditation and certification body representing and supporting the technical information security market.
CREST certifications are recognised globally for their rigorous standards, and they are often a requirement for working with government and regulated industries. This blog post provides a concise summary of the CREST certifications available and what each one entails.
What is CREST?
CREST provides assurance that individuals and companies deliver the highest standards of penetration testing, threat intelligence, and incident response. For individuals, CREST certifications demonstrate both theoretical knowledge and practical expertise in security testing and related disciplines.
CREST examinations are known for being challenging and realistic, requiring candidates to demonstrate practical skills in simulated real-world scenarios.
Summary of CREST Certifications
1. CREST Practitioner Security Analyst (CPSA)
Level: Entry / Foundation
Target Audience: Aspiring penetration testers and security analysts
Overview:
The CPSA certification is the first step in CREST’s career pathway. It assesses candidates on their understanding of core concepts in penetration testing and cybersecurity fundamentals, including:
- Network protocols and architecture
- Operating systems (Windows and Linux)
- Information gathering
- Vulnerability assessment techniques
- Legal and ethical frameworks
Exam Format: Multiple choice
Prerequisite: None (although relevant experience or training is strongly recommended)
2. CREST Registered Penetration Tester (CRT)
Level: Intermediate
Target Audience: Practising penetration testers with 1–2 years of experience
Overview:
The CRT is a hands-on practical examination, often considered one of the most respected certifications in the industry. It assesses a tester’s ability to identify and exploit vulnerabilities across various platforms, including:
- Infrastructure (internal and external)
- Web applications
- Network configuration weaknesses
- Exploitation techniques and scripting
Exam Format: Practical (6 hours)
Prerequisite: CPSA is strongly recommended
3. CREST Certified Infrastructure Tester (CCT INF)
Level: Advanced
Target Audience: Experienced infrastructure penetration testers
Overview:
This is a high-level certification that validates an individual’s ability to assess complex infrastructure environments. Topics include:
- Advanced networking and operating systems
- Active Directory exploitation
- Firewall and IDS/IPS evasion
- Privilege escalation and post-exploitation
- Complex scenario-based testing
Exam Format: Practical and written (9 hours)
Prerequisite: CRT (or equivalent) strongly recommended
4. CREST Certified Web Application Tester (CCT APP)
Level: Advanced
Target Audience: Experienced web application penetration testers
Overview:
This certification focuses entirely on web application security. Candidates must demonstrate in-depth knowledge of:
- OWASP Top 10 vulnerabilities
- Business logic testing
- Session management flaws
- Authentication and authorisation bypass
- Web technologies and frameworks
- Secure coding practices
Exam Format: Practical and written (9 hours)
Prerequisite: CRT (or equivalent) strongly recommended
5. CREST Certified Simulated Attack Specialist (CC SAS)
Level: Specialist
Target Audience: Red Teamers and advanced threat simulation experts
Overview:
This certification validates a candidate’s ability to perform full-scope simulated attacks, mimicking APT-style adversaries. It tests:
- Covert operations
- Social engineering
- Bypassing defences
- Custom tooling
- Command and control infrastructure
- Operational security during engagements
Exam Format: Practical assessment with report writing
Prerequisite: Advanced CREST certifications and Red Team experience recommended
Why Pursue CREST Certifications?
- Industry recognition: Trusted by governments, regulators, and top security consultancies
- Career progression: A clear pathway from junior to expert level
- Practical credibility: Tests real-world capabilities, not just theory
- Global reach: CREST is recognised across Europe, the UK, Australia, Singapore, and beyond
Final Thoughts
Whether you are just starting your career in cybersecurity or aiming to become a Red Team lead, CREST offers a structured, respected, and challenging certification path. As the demand for high-assurance penetration testing and cyber defence grows, CREST certifications remain a gold standard for technical excellence.