Altered Security Certification

Altered Security Certified Red Team Professional (CRTP) Practice Test

Prepare for the Altered Security Certified Red Team Professional exam with free practice tests focused on Active Directory enumeration, trust abuse, Kerberos attacks, privilege escalation, defense bypass, and reporting. Because the real CRTP is hands-on and not multiple-choice, each 20-question set uses a practical-study timer based on the 24-hour exam window mapped across the official objective areas.

11Practice Tests
220Total Questions
6Focus Areas
100%Free Forever

About the CRTP Certification Exam

Everything you need to know about the Altered Security Certified Red Team Professional exam, including format, pricing, eligibility, practical scope, and career relevance.

What Is CRTP?

The Certified Red Team Professional (CRTP) is Altered Security’s beginner-friendly, hands-on Active Directory red-team certification. It validates the ability to understand, enumerate, attack, and report on enterprise Active Directory environments using practical abuse of Windows and AD features rather than relying on patchable exploits.

CRTP is designed for penetration testers, red teamers, SOC professionals moving into offensive security, Active Directory administrators, security consultants, and students who want a structured introduction to real-world AD attack paths. Relevant job roles include penetration tester, junior red team operator, Active Directory security analyst, security consultant, and internal security assessor.

For career context, the U.S. Bureau of Labor Statistics reports a May 2024 median annual wage of $124,910 for information security analysts and projects 29% employment growth from 2024 to 2034. CRTP is especially useful for professionals who want to demonstrate hands-on AD security skills in environments where identity compromise, privilege escalation, and lateral movement are major risks.

Exam Format (2026)

Testing method: Remote, hands-on practical exam in an individual Windows Active Directory environment.

Questions: No official MCQ count. The exam is task-based and requires solving practical objectives.

Duration: 24 hours for the hands-on certification exam.

Question types: Active Directory enumeration, attack-path construction, privilege escalation, command execution objectives, and written solution reporting.

Passing score: No public scaled score. Candidates must meet the practical objective requirements and submit detailed solutions with mitigations.

Exam fee: On-demand options start at $249 for 30 days of lab access, lifetime course material, and one exam attempt. 60-day and 90-day options are listed at $379 and $499, with exam reattempts at $99.

Eligibility Requirements

Formal prerequisites: No degree, vendor certification, or job-title prerequisite is listed.

Recommended knowledge: Basic understanding of Active Directory and the ability to use command-line tools on Windows.

Technical readiness: Candidates should be comfortable with Windows domains, PowerShell concepts, authentication basics, Kerberos, groups, sessions, ACLs, and reading technical attack-path output.

Exam access: One certification exam attempt is included with the purchased lab package. Additional attempts are available for a separate reattempt fee.

Renewal: The CRTP certificate expires after 3 years. Renewal is free before expiry, and CRTP can also be renewed by completing approved higher-level Altered Security certifications.

CRTP Practice Focus Weights — 2026 Study Blueprint

Altered Security does not publish MCQ-style exam domain percentages for CRTP. The weights below are a practical study distribution mapped to the official CRTP learning objectives and the six domain-wise mock tests on this page.

AreaTopicWeight
D1Active Directory Fundamentals and Enumeration25% Practice Focus
D2Trust Mapping14% Practice Focus
D3Kerberos-Based Attacks18% Practice Focus
D4Privilege Escalation and Lateral Movement22% Practice Focus
D5Defense Bypass14% Practice Focus
D6Reporting7% Practice Focus

How Our Practice Tests Are Designed

Hands-on concept alignment — CRTP is a practical exam, so these tests focus on the concepts you need before and during lab work: enumeration logic, attack-path selection, Kerberos abuse, trust relationships, privilege escalation, defense bypass awareness, and mitigation writing.

Blueprint-aware mixed sets — Mixed practice tests combine all six focus areas so you can train the same end-to-end reasoning used in an Active Directory assessment: discover what exists, identify paths, escalate carefully, move laterally, avoid common detection mistakes, and document impact.

Practical-study timer — The real CRTP exam is 24 hours and has no official multiple-choice question count. For a study-friendly timer, each 20-question set is timed at about 111 minutes by mapping the 24-hour exam window across the official learning-objective groups. Treat this as a pacing tool, not a claim that the real exam has MCQs.

Domain-specific reinforcement — Use domain-wise tests after mixed sets to strengthen weak areas. For example, if Kerberos or trust abuse questions slow you down, complete those focused tests before returning to a full mixed set.

CRTP Exam Preparation Tips

Study Strategy

Build AD fundamentals first: Before advanced attacks, understand users, groups, ACLs, GPOs, SPNs, sessions, delegation, trusts, and how normal domain users can enumerate useful information.

Practice attack-path thinking: CRTP is not about memorizing one exploit. Train yourself to connect evidence from enumeration into a logical chain that leads from a low-privileged starting point to higher privileges.

Write notes as you practice: Keep a repeatable checklist for commands, findings, screenshots, impact, and mitigations. Strong documentation makes the final reporting phase much easier.

Test-Taking Strategy

Enumerate before attacking: Do not rush into techniques without understanding the domain layout, groups, rights, sessions, trusts, and reachable systems.

Track every credential and path: Document where each credential came from, what privileges it has, and which machines or services it can access. This prevents wasted time and supports your report.

Explain mitigations clearly: The exam expects detailed solutions with practical mitigations. For every successful path, capture why it worked and how an organization could reduce or detect that risk.

Frequently Asked Questions

How many questions are on the real CRTP exam?+
The real CRTP exam is not a multiple-choice exam, so Altered Security does not publish a fixed question count. It is a 24-hour hands-on Active Directory assessment in which candidates work through practical objectives in a live Windows environment.
What is the passing score for CRTP?+
CRTP does not use a public scaled score like 700 out of 1,000. To be successful, candidates must compromise the required targets, demonstrate command execution where required, and submit detailed solutions with practical mitigations.
How long is the CRTP exam?+
The CRTP certification exam gives students 24 hours in a hands-on Windows Active Directory environment. The lab contains multiple domains and forests, and candidates must enumerate, build attack paths, and solve practical challenges.
Are these CRTP practice tests free?+
Yes. All CRTP practice tests on Security Practice Test are free to access. Each mixed set and domain-wise mock test contains 20 questions to help you review Active Directory red-team concepts before attempting hands-on labs.
How are the CRTP practice questions distributed?+
Mixed sets combine questions from all six focus areas on this page: Active Directory enumeration, trust mapping, Kerberos attacks, privilege escalation and lateral movement, defense bypass, and reporting. The distribution is based on course coverage because Altered Security does not publish official MCQ domain percentages.
Can I retake the CRTP exam if I fail?+
Yes. Altered Security lists a $99 exam reattempt fee. There is a one-month cooldown before another attempt, and after three total attempts a student must wait six months before attempting again.
Does the CRTP certificate expire?+
Yes. CRTP has a three-year validity period. Altered Security states that renewal is free before the certificate expires, and CRTP can also be renewed by taking approved higher-level Altered Security certifications.
Do I need experience before taking CRTP?+
There are no formal degree or job-title requirements listed for CRTP, but Altered Security recommends a basic understanding of Active Directory and the ability to use command-line tools on Windows before starting the lab.

Ready to Test Your CRTP Knowledge?

Start with a mixed set to check your Active Directory red-team readiness, then use domain-wise practice tests to strengthen enumeration, Kerberos, trusts, privilege escalation, defense bypass, and reporting.

Start CRTP Practice Test 1 →

Authors

  • Security Practice Test Editorial Team

    Security Practice Test Editorial Team is the expert content team at SecurityPracticeTest.com dedicated to producing authoritative cybersecurity certification exam-prep resources. We create comprehensive practice tests, study materials, and exam-focused content for top security certifications including CompTIA Security+, SecurityX, PenTest+, CISSP, CCSP, SSCP, Certified in Cybersecurity (CC), CGRC, CISM, SC-900, SC-200, AZ-500, AWS Certified Security - Specialty, Professional Cloud Security Engineer, OSCP+, GIAC certifications, CREST certifications, Check Point, Cisco, Fortinet, and Palo Alto Networks exams. Our content is developed through careful review of official exam objectives, cybersecurity knowledge domains, and practical job-relevant concepts to help learners build confidence, strengthen understanding, and prepare effectively for certification success.

  • Sudhanshu Thakur - Reviewer

    Enterprise Technology and Digital Transformation Professional with 18+ years of experience in enterprise software, SaaS, industrial automation, and business consulting. Formerly associated with Rockwell Automation, Tech Mahindra, Emerson, ABB, L&T Infotech, and Hewlett Packard Enterprise.