Learn how to stop advanced attackers capable of evading machine defenses

MCSI Certification

MTH - Certified Threat Hunter

A highly skilled and qualified MCSI certified Threat Hunter is able to execute threat hunting engagements in large-scale Windows networks. By identifying and targeting threats early, organizations can improve their overall security posture and prevent costly breaches.

Threat hunting is the proactive identification and mitigation of threats in a network before they cause damage. It is a critical process for improving the security posture of an organization and preventing costly data breaches. To be effective, a threat hunter must have a deep understanding of the network environment and the tools and techniques necessary to detect malicious activity.

The MTH Certification is designed to help security professionals master the art and science of threat hunting. It is a globally-recognized credential that demonstrates that you have the competencies that the industry is seeking. Earning your MTH certification can open up opportunities for you to pursue a career in Cyber Threat Hunting.

$699
Intermediate Level MCSI Certification Intermediate
ic-certificate Certification
ic-clock 600+ hours
ic-money $450
No Expiry, No Renewals

Course Overview

The MTH Certification offers you an in-depth understanding of cyber threat hunting concepts and techniques. After completing the course, you will be able to effectively detect, diagnose, and respond to cyber threats.

1. Strong technical skills.

A successful cyber threat hunter must be technically skilled in order to identify, track, and mitigate malicious activities on their networks. They must be able to navigate complex systems and data flows, understand malware and exploits, and have a deep understanding of how networks operate.

2. Knowledge of attacker tactics, techniques, and procedures. 3. Strong problem-solving skills.

Threat hunters must also be familiar with attacker tactics, techniques, and procedures (TTPs). This allows them to identify malicious activity that may not be detectable by traditional security controls. By understanding how attackers operate, threat hunters can better protect their networks from becoming compromised.

3. Strong problem-solving skills.

Threat hunting is not a simple process. It can be difficult to find and track malicious activity across a complex network. A successful hunter must be able to think critically and solve problems quickly and efficiently.

4. Experience in network security.

In order to properly identify malicious activity, threat hunters must have a deep understanding of network security. They need to be familiar with the various security controls and how to use them to detect malicious activity. Experience in network security will also help them understand the patterns of malicious activity and how to properly investigate incidents

The MCSI Threat Hunting certification will equip you with the skillset necessary to carry out the following tasks:

  • Capture digital forensics artefacts in large-scale enterprise networks and index them for threat hunting
  • Hunt for cyber adversaries that have bypassed/avoided/defeated enterprise security solutions using Python and YARA
  • Rapidly analyse suspicious binaries to confirm whether they are malware or not
  • Align your approach and methodology to the MITRE ATT&CK Matrix
  • Practice threat hunting against thousands of machines and gigabytes worth of malware samples

The MTH Certification reflects the broad spectrum of skills, abilities and knowledge required for success in today's rapidly changing cyber world. It demonstrates that you have the competencies to operate and thrive in any network environment.

A cyber threat hunter can earn a six-figure salary and is in high demand because their skills are so valuable. They are able to detect and prevent cyber attacks, which is why businesses are willing to pay top dollar for their services.

Knowledge, Skills and Abilities You Will Acquire

MCSI is one of the most respected and trusted names in cyber security education and training. Our certifications teach critical skills, knowledge and abilities needed to advance a career in cyber security. Our courses are comprehensive and up-to-date, and our instructors are experienced professionals who are dedicated to helping students learn. MCSI provides the real-world skills and knowledge you need to protect any organization from cyber threats.

  • Learn a professional threat hunting procedure that can be applied in enterprise and government networks

    Threat hunting is a process of identifying and eliminating potential threats to an organization's security. It's important to use a structured process for threat hunting in order to ensure that all potential threats are identified and eliminated. A structured process helps to ensure that all possible threats are considered, and it also helps to ensure that your work is efficient and effective.

    Establish Goals and Objectives

    When undertaking any activity, it is important to establish specific goals and objectives in order to achieve the desired outcome. Threat hunting is no exception. By establishing your goals and objectives prior to beginning your hunt, you can ensure that your efforts are focused and directed in the most effective way possible.

    Collect Forensics Data

    The second step in a threat hunting process is to collect forensics data across the network. In order to do this, analysts must first identify the systems and data sources that need to be analyzed. Once these have been identified, investigators can use forensics tools to collect information from these systems. This information can include logs, files, and other data that can help to identify threats. By collecting data from across the network, analysts can get a comprehensive view of all activity on the network.

    Generate Hypotheses

    In a threat hunting engagement, the hypothesis generation phase is where the analyst starts to develop a list of hypotheses about the potential threats that could be impacting the organization. This can be done by reviewing the organization's security logs, network traffic, and other data sources to identify any potential patterns that could indicate malicious activity. The analyst will then test these hypotheses by further investigating the data to see if they can confirm or disprove them.

    Test Hypotheses

    The hypothesis testing phase is where you test your assumptions about the attack. This is where you use your data to determine the likelihood that the attack is real. You can do this by looking for evidence of the attack and trying to determine how likely it is that the attack could have occurred.

    Triage Results

    Triage is the process of analyzing data to determine if it warrants further investigation and, if so, what type of investigation is required. Triage is necessary because it is impossible to investigate every piece of data. By using triage, analysts can focus on the most important data and quickly rule out data that is not relevant to the investigation.

    Investigate potential incidents

    The incident investigation phase in a threat hunting engagement is where the hunters attempt to identify and understand the scope of the incident, identify and isolate any affected systems, and begin to gather evidence about the incident. The hunters will also work to determine the root cause of the incident and any potential vectors that may have been used to compromise the systems.

    Engineer Detections

    Detection engineering is the process of designing and implementing detection controls to identify malicious or unauthorized activity. This is where you codify your threat hunts and deploy long-term security detections.

  • Capture digital forensics logs in large-scale computer networks

    Large-scale threat hunting in enterprise or government networks can help identify and mitigate potential security incidents before they cause serious damage. By proactively searching for threats, organizations can identify and address vulnerabilities before they are exploited by malicious actors. This can help protect against data breaches, cyberattacks, and other malicious activities.

    Windows Internals

    Knowing Windows internals is important for threat hunting because it allows you to understand how Windows works. This understanding can help you find malicious activity that may not be visible to someone who does not know Windows internals.

    This course teaches you fundamental Windows knowledge, such as, but not limited to:

    • Processes and DLLs
    • Windows Registry
    • Scheduled Tasks
    • Windows Drivers
    • Windows Services
    • Windows Event Logs

    Data Collection

    Collecting forensics data at scale can be difficult. This course will teach you the tools and techniques necessary to collect data from tens of thousands of machines. You will learn how to use Forensics Collection scripts, Sysinternals utilities, and other third-party tools to efficiently collect data from a large number of machines.

    • Configuring Windows systems to log key security event courses for digital forensics purposes
    • Using open-source tools to capture snapshots of workstations and servers
    • Capturing the physical memory (RAM)
    • Capturing Windows Event Logs

    Network security logs are a valuable source of information for any organization. By collecting and analyzing these logs, you can identify potential security incidents, locate malicious activity, and improve your organization's security posture.

    • Routers and switches
    • Firewalls
    • IDS/IPS
    • Proxies

    SIEM Architecture and Deployment

    A SIEM (security information and event management) is a platform that collects data from various security devices and sources in order to help organizations detect and respond to threats. It does this by consolidating and analyzing data from various devices, such as firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus software, and log files from servers and applications. SIEMs also help organizations meet compliance requirements by providing a complete view of activity across the enterprise.

    In this course, you will learn how to use ELK as a free SIEM for threat hunting. ELK, or Elasticsearch, Logstash, and Kibana, is a free and open source solution for managing large volumes of data. In this course, you will learn how to use ELK to monitor your system activity and detect threats.

    File Decomposition

    Malicious files can often be very complex, containing a variety of code and data that can be used to achieve the attacker’s goals. Decomposing these files can help you to better understand the threats that they pose and the behaviour that they exhibit.

    This can be particularly useful for threat hunting, as it can help you to identify malicious activity that may not be immediately obvious. By understanding the different components of a malicious file, you can more easily spot patterns and indicators of compromise that may otherwise go unnoticed.

  • Use Python to hunt for indicators of compromise at scale

    Data Science

    Knowing how to work with large datasets is important for threat hunting because it allows you to analyze more data and identify threats that may have otherwise gone unnoticed. Additionally, large datasets can be used to train machine learning models that can then be used to automate the process of threat hunting.

    Data science tools are important for threat hunting because they help analysts process and analyze large data sets quickly. Additionally, data science tools can help automate the process of threat detection, making it easier and faster for analysts to find threats.

    Python Pandas

    Python Pandas can be used for cyber threat hunting in a few ways. One way is to use the built-in functions to search for specific strings or values in data sets. This can be helpful in identifying malicious activity or data breaches. Another way is to use the data analysis features to identify trends or patterns in data. This can help you to spot suspicious activity that may be indicative of a cyber attack.

    MITRE Matrix

    The MITRE matrix is a tool that can be used for threat hunting. It is a table that organizes threats and vulnerabilities by type and severity. This can help you to organize and present your work.

    This course teaches you threat hunting techniques across the entire MITRE Matrix:

    • Initial Entry
    • Execution
    • Persistence
    • Privilege Escalation
    • Defence Evasion
    • Credential Access
    • Discovery
    • Lateral Movement
    • Collection
    • Command and Control
    • Exfiltration
  • Use YARA to hunt for malicious binaries at scale

    YARA can be a powerful tool for threat hunting. By creating rules that identify specific malware families or indicators of compromise, you can quickly scan your environment for signs of an attack.

    • Build a “goodware” dataset and a malware dataset
    • Learn how to use YARA's professionally and many of its pattern matching techniques
    • Detect obfuscated binaries
    • Detect exploits, vulnerabilities, shellcode and zero-days
    • Identify new malware samples based on features
    • Increase the speed of incident response
    • Build your own private anti-virus software using retro-hunting
  • Learn how to investigate cyber intrusions using digital forensics

    The MTH course provides multiple digital forensics case studies for the students to solve. This gives the students the opportunity to apply the skills they have learned in a real-world setting. The case studies are also a great way to learn more about digital forensics.

    • Investigating suspicious SSH tunnels
    • Investigating privilege escalation attacks
    • Detecting persistence techniques and entries
    • Investigating multiple password dumping attack techniques
  • Write professional malware analysis reports

    Executive Summary

    An executive summary is a high-level overview of a document that synthesizes the key points. It is typically used to give decision-makers a quick, executive-level understanding of complex topics. The executive summary should be clear, concise, and free of jargon. It should also contain enough detail to give the reader a good understanding of the document's contents.

    Tags and Keywords

    malware can have many different tags and keywords depending on its purpose. Some common tags and keywords for malware include: viruses, worms, Trojan horses, spyware, adware, and ransomware. Identifying and extracting these keywords and tags will help you summarize what the report is about.

    Sensitivity Classification

    The Traffic Light Protocol is a color-coding system used to indicate the sensitivity of information contained within a document. The colors represent different levels of classification, with red being the most sensitive, followed by amber, green, and white. The system is designed to help recipients of a document quickly identify the level of sensitivity of the information contained within.

    When conducting malware analysis, it is often necessary to share findings with other members of the security team. The Traffic Light Protocol can be used to classify the sensitivity of information contained in a report, making it easier for recipients to identify the level of risk associated with the malware.

    Hashes

    A common technique used to detect and analyze malware is to hash the contents of the sample and compare the result to a known database of hashes. This technique is effective because it is quick and does not require any prior knowledge of the sample. The most common algorithms used for hashing are MD5 and SHA-256.

    Methodology

    A malware analysis methodology is a process for reverse engineering malware to determine its functionality, capabilities, and purpose. The goal of malware analysis is to understand what the malware does, how it works, and how it can be detected and removed. The first step in malware analysis is to identify the type of malware and its capabilities. This can be done by looking at the code, researching the malware online, or running it in a controlled environment. Once the malware has been identified, the next step is to determine its purpose. This can be done by looking at the code, observing its behavior, or analyzing how it interacts with other systems.

    Limitations

    There are a number of limitations to malware analysis. Firstly, it can be time consuming and resource intensive. Secondly, there is a lack of standardization in tools and techniques, which can make it difficult to compare results across different analysts. Thirdly, malware can be designed to evade detection by malware analysis techniques, making it difficult to obtain accurate results. Finally, the dynamic nature of malware means that it can be difficult to obtain repeatable results.

    Identification and Classification of Sample(s)

    Information regarding the malware. For example, filename, file size, file type and format, first detection in the wild, and attributed threat actor.

    Features

    Different malware can have different features. For example, some malware is designed to steal information, while other malware is designed to disable systems. These features can then be graded by confidence level.

    Dependencies

    Malware dependencies are what make a given piece of malware effective. Without the proper dependencies, a piece of malware may not be able to function properly or may not be able to infect a system. Malware dependencies can include things such as specific operating system versions, specific hardware, or even specific applications. In some cases, a piece of malware may have dependencies on multiple items in order to function properly. In other cases, a piece of malware may only have a few dependencies. Properly analyzing a piece of malware's dependencies is important in order to determine how effective it may be.

    Conclusions of Code Analysis and Observed Behavior

    Conclusions of code analysis can include an understanding of the functionality of the malware, how it works, and what it is designed to do. Additionally, code analysis can reveal the level of sophistication of the malware and who might have created it. Observations of behavior can also provide information on what the malware does, how it works, and what it is designed to do.

Student Testimonial

Career Outcomes

This certification thoroughly prepares you for the following roles:

  • Cyber Threat Hunter
  • Security Operations Centre (SOC) Analyst
  • Threat Detection Analyst
Certification Detail

MCSI certifications are highly respected, showcasing your expertise and commitment to excellence. With cutting-edge, hands-on content, our exercises teach in-demand skills for immediate application. Certifications are valid for life, with no renewal fees or time limits.

Syllabus

Training Modules

This course provides you with multiple training modules, each of which is designed to teach you practical skills that can help you solve important cyber problems. Each module offers exercises that will help you build your skills and capabilities.

  • MTH-QS-01: Quickstarter: Lab Setup - 3 exercises
  • MTH-QS-02: Quickstarter: Threat Hunting with YARA - 5 exercises
  • MTH-QS-03: Quickstarter: Threat Hunting with Python Pandas - 5 exercises
  • MTH-001: Lab setup - 7 exercises
  • MTH-002: Fundamental Skills - 2 exercises
  • MTH-003: Windows Internals Fundamentals - 3 exercises
  • MTH-004: Pandas Fundamentals - 7 exercises
  • MTH-101: Threat Hunting with YARA - 20 exercises
  • MTH-102: Threat Hunting with Pandas - 15 exercises
  • MTH-201: Digital Forensics and Incident Response - 10 exercises
  • MTH-202: Memory Forensics - 3 exercises
  • MTH-301: Malware Analysis - 7 exercises
  • MTH-302: Capability Development - 12 exercises
  • MTH-401: Threat Hunting Simulations - 10 exercises

Enroll now with lifetime access for $450

Certifications

MCSI Industry Certifications are important for you to earn because they signify that you have the skills required to work in a cybersecurity. Certificates of Completion are also important to earn because they signify that you have completed an exercise. Earning Certificates of Completion and Industry Certifications demonstrates that you are willing to put in the extra work to be successful.

1
ic-step-1

Learn in-demand practical skills

2
ic-step-2

Receive tailored feedback

3
ic-step-3

Earn 5 certificates & build a portfolio

4
ic-step-4

Unlock career opportunities

MCSI's MTH certification provides you with the required skills and knowledge aligned to the Australian Signals Directorate's Cyber Skills Framework . Upon reaching each level, you will earn a certificate of achievement. Click here to learn more about our multi-credentialed approach.

Certificate Level Curriculum Completion Requirement
MCSI Threat Hunting Learner Level 1 0%
MCSI Novice Threat Hunting Practitioner Level 2 20%
MCSI Threat Hunting Practitioner Level 3 50%
MCSI Senior Threat Hunting Practitioner Level 4 70%
MCSI Certified Principal Threat Hunter Practitioner Level 5 80%
MCSI Certified Expert Threat Hunting Practitioner Level 6 95%

In a single course, MCSI offers multiple industry certifications. You will save time and money with us because you will receive several accredited levels of competencies with a single purchase rather than having to buy multiple courses. Our goal is to provide you with a course that will take you from beginner to expert.

Sample Exercises

Write A YARA Rule That Identifies Binaries Compiled In The Last 24 hours (Novice)

exercise

Write A Query To Search For Signs Of Lateral Movement (Advanced Beginner)

exercise

Build A MultiThreaded Python Tool To Convert A Redline Outputs To Parquet At Scale (Competent)

exercise

Help and Support

Unmatched Mentorship: Accelerate Your Growth

At MCSI, mentorship is built to unlock your full potential. Receive personalized insights from multiple experts, tackle real-world challenges, and get the guidance you need to grow rapidly and excel in your cybersecurity career.

  • Personalized feedback with an average instructor response time of 1 business day
  • Direct access to instructors and peers via a 24/7 Discord server
  • Progress tracking and milestone assessments to keep you on course toward success
  • 95% of MCSI graduates land cybersecurity jobs with expert mentoring and feedback

24/7/365 Discord Community:

If you're looking for additional support during your studies, consider joining our Discord server. Our community of fellow students and instructors is always available to provide help and answer any questions you may have.

Personalized Support:

Your submissions will be reviewed by MCSI instructors, who will provide you with personalized feedback. This input is critical since it can assist you in identifying the areas where you need to enhance your skills. The instructor's feedback will also tell you how well you did an exercise and what you can do to improve your performance even further.

Click here to see an example of personalized feedback.

Our personalized support will take your skills to the next level. Read what a student says about it:

Quick Questions:

If you have any questions or need clarification on any of the exercises, MCSI offers a Quick Questions section on each exercise where you can ask for help. This is a great resource to use if you need assistance. This feature is only available for paid courses.

Prerequisites

Training Laptop Requirement

This course can be completed on a standard training laptop. To ensure you have the necessary hardware to complete the course, your machine should meet the following specifications:

  • 64-bit Intel i5/i7 2.0+ GHz processor or equivalent
  • 8GB of RAM
  • Ability to run at least (1) virtual machine using Virtual Box, or an equivalent virtualization software
  • Windows 10 or later, macOS 10 or later, or Linux
  • Local administrator privileges
Do you support older operating systems?

Yes. Many of the exercises can be completed on older OS versions. A few of our students are successfully using older equipment to learn cyber security.

Proficiency in the English language

You must have the ability to comfortably read and understand IT documentation written in English. Ideally, they have an IELTS score of 6.5 with no band less than 6 (or equivalent).

Note: You can register for this course without having undertaken an English test.

Programming Skills

We recommend that you have some experience in software programming prior to registering for this course.

The preferred programming language for this course is Python.

Lab Environment

This course teaches you how to setup and configure your own cybersecurity lab.

  • Save thousands by avoiding the costs of pre-built labs
  • Customize your lab with the hardware and software you prefer
  • Gain practical skills in networking, system administration, and technical troubleshooting
  • Build confidence by practicing tasks you'll need to perform in real-world jobs
  • Manage and maintain your own tools—just as employers expect in the workplace

Aptitude Test (Optional)

This is an intermediate course. It includes exercises for novices but assumes that they have competent IT skills and a strong understanding of cybersecurity concepts.

Aptitude Test:

If you're not sure if you'll be able to fully enjoy this course, then contact us via email to organize a free aptitude test. This test will determine whether you meet the course's basic baseline criteria. If you've never studied with us before, it will also introduce you to the MCSI Method™.

Easier Courses:

If you are convinced that this course is too difficult for you, then you should start with something easier. We recommend checking out the following courses:

You won't need to complete all of these easier courses in their entirety. Most likely, you already have adequate skills and only need to fine-tune them before taking an intermediate course like this one. Choose a route, follow it, enhance your skills, and then return to this course in a few months!

Free Study Materials

We place a major emphasis on teaching practical skills. Our students learn best when they can put what they've learned into practice. In addition, we believe that many significant thoughts and ideas should be publicly accessible to anyone. We believe that knowledge that is already available in the public domain should not be subject to price.

Purchasing a course is a significant investment. It's critical to know what the course entails and what you intend to get out of it. If you're on the fence about whether or not to buy this course, you might want to check out our library for more information. Concepts, terminology, and essential principles are all taught in our library. This will give you more details about the topics that will be addressed in the course.

🔥 Click here to read more articles from our online library.

MCSI MTH vs. SANS FOR508

MCSI equips you with the practical expertise that creates the defining moments of an extraordinary career

SANS FOR508 Course MCSI MTH Course Return on your investment
Cost: $8525
+ Exam Fees
+ Renewal Fees
$450
Everything
Included
Save $8075
(95% cost savings)
Total Training Hours: 54 hours 600+ hours 11 times
more training hours
Access Duration: 4 Months
(on-demand)
Lifetime Access,
Updates included
Career Investment
Protection
Learning Style: Step-by-step
instructions
Critical thinking
and problem-solving
Join the elite 10%

Enrollment and Fees

Fees

Your next breakthrough starts with bold action—take it today with MCSI, buy now:

$699

What You Receive

MCSI delivers unmatched benefits, expertly combined to give you a competitive edge:

  • Lifetime access with no renewal fees or hidden costs
  • All updates free, with regularly refreshed content.
  • 5 certifications in one purchase
  • Personalized feedback and direct access to instructors for continuous support
  • Join a community of 35,000+ users to network, collaborate, and grow

Click here to read student testimonials to see firsthand accounts of their experiences with MCSI training.

Time to Value

After just 5 exercises, 66% of users report stronger problem-solving skills as a direct result of their MCSI training.

Put in the effort, and we guarantee you'll see measurable improvements in your skills within weeks. Depending on your starting point, the MCSI Method will help you become a competent professional within the specific cyber domain taught in this course in just a few months.

Actively Maintained Course

This course is actively maintained, regularly tested, and updated with industry support to ensure accuracy, quality, and the most up-to-date skills—setting it apart as one of the best in the market.

Terms and Conditions

Cooling-Off Policy

Received a full refund if you changed your mind about a purchase within 24 hours. No questions asked. Read the full details here.

Don't Buy This Course

Don't buy this course if you believe cybersecurity is simple, can be mastered in hours, or that passive consumption of videos and books is enough.

Our competitors deceive you with promises that video courses and open-book certificates are sufficient. Cybersecurity demands hundreds of hours facing real challenges, with experts guiding you to strengthen your weaknesses. Only when you embrace this will you grasp the value of the MCSI Method™ and the transformation it offers.

By purchasing, you commit to our 100% practical MCSI Method™—no solutions, no walkthroughs, only critical thinking, problem-solving and research like in the real-world. Unsure? Try the free version first.

How does MCSI Compare?

MCSI is 95% more cost-effective with 20x more practical training hours:

Traditional Vendors Conference Workshop Cybersecurity Bootcamps MCSI Certifications Return on Your Investment
Cost: $5,000+ $4,000+ $10,000+ $450 Save between $3,500 to $9,500
Hours of Practical Training: 30 20 150 600+ hours 20x more practical training hours
Number of Certifications: 1 0 1 5 Certified beginner to expert in one purchase
Travel Expenses: $8,000+ $4,000+ $6,000+ $0 (online) Save between $4,000 to $6,000

Enroll now with lifetime access for $450

Bloom's Taxonomy

Employers seek problem-solvers who deliver real value. With MCSI, you'll develop practical, in-demand skills applicable across diverse cyber roles.

Our proven training method elevates cyber operators to the top 10% of the industry—the results speak for themselves.

We empower both beginners and experts to accelerate their careers and reach new heights
  • 95% of users completing our Remote Internship or an intermediate course landed cybersecurity jobs
  • 84% reported an increased confidence in their real-world cybersecurity abilities
  • 76% said MCSI training opened new career opportunities
  • 71% said managers recognized their skills improvement
We elevate our users to elite levels through the most realistic cyber training on the planet
  • With just 600 hours of MCSI training, users transform from beginners to expert practitioners—creating tools, presenting at conferences, and being recognized as top talent in their organizations
  • 88% of users reported that MCSI transformed their work approach—enabling greater autonomy, fostering creativity, enhancing problem-solving skills, and improving their ability to meet work expectations
  • 44% of our top users are directly involved in protecting critical infrastructure and national security
Our training transforms lives, empowering users to achieve their personal goals
  • Many of our users have secured roles in tier-1 cybersecurity teams and contributed to high-profile projects featured in global news, thanks in part to our courses
  • Some users received visa sponsorships, enabling them to move from developing countries to the UK, United States, and Australia to work for top firms
  • Several users overcame financial challenges by securing remote freelance or contract roles, rising to the top 5% of IT earners in their countries

We certify cyber practitioners weekly, with results independently verifiable. Our users produce artifacts that employers can audit to confirm their skills—an unmatched capability for those who need to hire top talent.

Enroll now with lifetime access for $450

Frequently Asked Questions

  • What is the MCSI Method™?

    Watch this video:

  • Are solutions disclosed and available?
    • No. Our method of teaching cyber security consists of challenging you with real-world problem statements that you're expected to research and solve by doing your own research. This is how you'll be expected to work in the field. When you fail an exercise, we provide you with constructive feedback to improve and try again.
  • Do exercises, training content, or certificates ever expire? Am I expected to buy again in the future?
    • Upon purchase, all the materials permanently unlocked with no recurring or ongoing fees.
  • Do I need to buy the training and the certification separately?
    • No. The price provided covers both. You only pay once.
  • Do you offer any special offers and discounts?
    • We understand that many of our customers may be looking for discounts, and we would love to be able to offer them. However, we do not provide discounts because we believe that our prices are fair and reasonable. We work hard to keep our prices low, and we feel that discounts would be unfair to our other customers. We hope you understand.
  • If I can't solve the exercise where do I go for help?
  • Who reviews and marks exercises?
    • Trained cyber security instructors that work for Mossé Cyber Security Institute.
    • MCSI instructors are highly qualified and experienced professionals who are able to teach a variety of topics related to information security. They have the ability to tailor their teaching methods to meet the needs of each student, regardless of their experience level. In addition, they are always up-to-date on the latest trends and developments in information security, which enables them to provide students with the most relevant and current information.
  • We can't pay via credit card. Can you raise an invoice for wire payment instead?
    • Yes. Send us the list of bundles and certifications you want to purchase at [email protected]
  • Can I access a trial/demo the certification programmes prior to enrolling?
    • We provide a free curriculum with 100+ hours practical exercises you can try.
    • The Free Curriculum teaches Security Tools, Penetration Testing, Red Teaming, Threat Hunting, Cyber Defence, GRC and Windows Internals.
    • Try the Free Curriculum
  • Do you provide Continuing Professional Education (CPE) credits?
    • Yes. Every single exercise offers CPE credits. The number of credits earned depends on the difficulty of the exercise completed. Below are the CPE Credits achieve for an exercise in each difficulty:
    • Novice exercises = 1 CPE credits
    • Advanced Beginner exercises = 2 CPE credits
    • Competent exercises = 5 CPE credits
  • Do I need to complete an exam to receive MCSI Certification?
    • No. MCSI Certifications are completed by solving practical cybersecurity exercises.
  • Do I need to purchase cybersecurity tools or subscriptions?
    • No. Only free or trial versions are used in our exercises. You do not require making any purchases.

More Kind Words from Students

Enroll now with lifetime access for $450

DO YOU HAVE A QUESTION?

We'll respond within 24 hours

Visit our Frequently Asked Questions (FAQ) page for answers to the most common questions we receive.

Ready to learn hands-on cyber security skills online?

Try 100 hours for free