What is PTES?

PTES stands for Penetration Testing Execution Standard. It's a framework that helps security professionals run structured, professional, and repeatable penetration tests. Like a checklist with purpose — telling you what comes next.

The PTES process is divided into seven logical phases — and this simulation follows each of them.

The 7 Phases of PTES

Pre-Engagement: You define the rules with the client — what's allowed, what's off-limits, and what you're testing.
Intelligence Gathering: You collect as much information as possible about the target — like a hacker preparing their plan.
Threat Modelling: You analyze the information and imagine how an attacker might break in. What are the weakest links?
Vulnerability Analysis: You use tools to find real weaknesses — missing updates, exposed logins, weak passwords, etc.
Exploitation: Time to act. You try to break in using the vulnerabilities you've found.
Post-Exploitation: Once inside, you evaluate what you can access and how far the breach could go.
Reporting: You document everything in a clear report, helping the client fix the problems.

Looks pretty much our sidenav, right? In this simulation, you'll work your way through each phase — combining hands-on tasks with key theory — to understand how real-world ethical hacking is done.

Our journey starts here: