The CREST Certified Infrastructure Tester examination is a rigorous assessment of the candidate's ability to assess a network for flaws and vulnerabilities at the network and operating system layer. The exam includes:
- Public domain information sources
- Networking
- Windows operating systems
- Unix operating systems
- Desktops
- Databases
- Voice networking
- Wireless networking.
The format is the same for both the Infrastructure and Application Certified Tester exams. The candidate will be expected to posess not only the technical ability to find security weaknesses and vulnerabilities, but also the skills to ensure findings are presented in a clear, concise and understandable manner.
The examination consists of three tasks:
- A hands-on practical examination
- A multiple choice technical examination
- A long form 'essay style' written paper.