Practice Certification Exams
Built by L3 Engineers · Real Exam Format
35+ free practice exams across cybersecurity, cloud, networking, DevOps and IT foundations — scenario-grade questions, live timer, instant explanations, branded certificate, LinkedIn-ready badge.
CISSP Roadmap — Beginner Guide
Eligibility · fees in India · 8 domains · "where do I start" quiz · top mistakes · 16-week plan.
Open Roadmap →CISSP AI Learning Hub
Always-on tutor · explains every wrong answer · fresh scenarios on demand · drills your weak spots.
Open AI Tutor →CISSP Full Mock — All 8 Domains
150 Q · 180 min · ISC2 weighted distribution — the closest thing to the real exam.
Start Mock →No exams match your search
Try a different keyword or click "All" to see everything.
🆕 Latest · 5 New Exams (10 Jun 2026)
Five high-demand credentials filling the biggest remaining gaps — expert-tier enterprise firewall, digital forensics/DFIR, hands-on penetration testing, foundational network OS, and cloud networking. 300 scenario questions, every exam matched to the CURRENT official blueprint (FCSS 7.6 & JNCIA JN0-106 reflect the latest exam codes) with a teaching explanation for every option. Use the topic tags above to filter.
🛡️ Fortinet FCSS — Enterprise Firewall 7.6
FCSS_EFW_AD-7.6 · Security Fabric & HA, VDOM/VLAN, SSL inspection, IPS/web filter/app control, OSPF/BGP, IPsec IKEv2 & ADVPN, FortiManager, CLI troubleshooting (diagnose/sniffer/session).
🔬 EC-Council CHFI v11 — Forensic Investigator
312-49 · forensic process & chain of custody, disks & file systems, data acquisition, anti-forensics, Windows/Linux/Mac, network & malware forensics, web/email/cloud, mobile/IoT, dark web, reporting.
🎯 GIAC GPEN — Penetration Tester
GPEN · pentest planning & scoping, recon/OSINT, scanning & enumeration, exploitation, Metasploit, password & hash attacks, Kerberos/AD, Azure/Entra ID attacks, pivoting & C2.
🌿 Juniper JNCIA-Junos (JN0-106)
JN0-106 · networking fundamentals, Junos OS architecture, CLI/J-Web, candidate config + commit/rollback, operational monitoring, routing fundamentals, policy & firewall filters.
🌐 AWS Advanced Networking — Specialty
ANS-C01 · VPC & Transit Gateway design, Direct Connect (VIF/LAG/MACsec), Route 53 & hybrid DNS, PrivateLink, ELB/NLB/GWLB, Global Accelerator, network security & governance.
🆕 Latest · 10 New Vendor Exams (30 May 2026)
Brand-new, genuinely-missing vendors — NAC, endpoint, cloud-managed networking, SIEM/XDR, backup & ransomware recovery, multicloud infrastructure, Oracle Cloud architect, and Zero Trust. 582 scenario questions, every exam matched to the real vendor blueprint with explanations for every option. Use the topic tags above to filter.
🔎 Forescout Administrator (FSCA)
Agentless NAC · eyeSight visibility, eyeControl enforcement, eyeSegment, 802.1X/RADIUS, device classification & compliance, eyeExtend integrations.
⚡ Tanium Certified Operator
TAN-1000 · linear-chain architecture, sensors & questions (Interact), actions & packages, computer groups, RBAC/content sets, Patch/Comply/Threat Response modules.
📡 Cisco Meraki Solutions Specialist
500-220 ECMS · Dashboard & licensing, MX security/SD-WAN (AutoVPN), MR wireless, MS switching, MV/MT, Systems Manager, Dashboard API, monitoring.
🔍 Elastic Certified Analyst (SIEM)
Elasticsearch & Kibana · KQL/ES|QL, Discover, dashboards, ECS, Elastic Security detection rules, Timeline investigations, Cases, MITRE ATT&CK.
🛰️ Google SecOps (Chronicle)
Google SecOps · ingestion (forwarders/feeds), UDM & parsers, UDM Search, YARA-L 2.0 detections, curated detections, Mandiant threat intel, SOAR playbooks.
💾 Veeam VMCE v12
Backup & Replication · proxies/repositories, backup & copy jobs (GFS), replication/failover, SureBackup, Instant Recovery, immutable hardened repo, SOBR, ransomware recovery.
🧱 Nutanix NCP-MCI 6.10
Multicloud Infrastructure · AOS & Distributed Storage Fabric (RF/EC), AHV, Prism Element/Central, data protection (PD/Leap/Metro), LCM upgrades, cluster ops.
☁️ Oracle Cloud (OCI) Architect Associate
1Z0-1072 · IAM (compartments/policies/dynamic groups), VCN & gateways, security lists/NSGs, Load Balancer, Compute shapes/pools, Block/Object/File storage, HA/DR design.
🦉 Wazuh XDR / SIEM Analyst
Open-source XDR · manager/indexer/dashboard/agents, log collection, decoders & rules, FIM, SCA (CIS), vulnerability detection, MITRE ATT&CK, active response, compliance.
🔐 CSA CCZT — Zero Trust
Certificate of Competence in Zero Trust · NIST 800-207 (PE/PA/PEP), ZT pillars, Software-Defined Perimeter, CISA ZTMM, planning/implementation/migration, governance.
🆕 New · Real-Exam-Format Practice (May 2026)
20 brand-new exams covering Palo Alto, Cisco DevNet/CyberOps/SD-WAN, Fortinet NSE 5 & 8, Juniper, Aruba, Check Point Master, Splunk, CompTIA Cloud+/Linux+, GIAC GCIH, CrowdStrike, Okta, CyberArk, Netskope, and Zscaler ZIA. Every exam matches the real vendor exam Q count, duration, and pass percentage. Scenario-grade questions with vendor-style trap distractors and explanations for both correct AND wrong options.
Zscaler ZIA Administrator (ZCCA-IA)
Zscaler Internet Access · GRE/IPSec/PAC forwarding, sub-locations, SAML/SCIM, URL Filtering, Cloud App Control, SSL inspection, ATP, DLP.
Palo Alto PCNSA — Network Security Admin
PAN-OS 11 · App-ID, User-ID, NAT (DIPP/Dynamic/Static), security policy, app-default, URL filtering, decryption basics, GlobalProtect, logs/reports.
Palo Alto PCDRA — Cortex XDR Analyst
Cortex XDR · Prevention (BTP/Exploit/Malware/BTP), EDR Causality Chain, Live Terminal response, XQL threat hunting, Identity Analytics.
Cisco DEVASC 200-901 — DevNet Associate
DevNet · Python, REST APIs, JSON/XML, Meraki/DNAC/Webex/IOS XE NETCONF/RESTCONF/YANG, Git/Docker/CI-CD, Ansible/Terraform, network fundamentals.
Cisco CyberOps 200-201 (CBROPS)
SOC Tier-1 · NetFlow analysis, IDS/IPS, malware analysis, PCAP/Wireshark/Zeek, NIST IR lifecycle (PICERL), CVSS, IOC vs IOA, Sysmon/Windows Event IDs.
Cisco SD-WAN ENSDWI 300-415
SD-WAN · vManage/vSmart/vBond/cEdge architecture, OMP, control/data policy, app-aware routing, SD-WAN Security stack, AppQoE.
Fortinet NSE 5 — FMG + FAZ
FortiManager + FortiAnalyzer · ADOMs, device registration, policy packages, install jobs, FortiView, reports, event handlers, FortiSoC.
Fortinet NSE 8 — Expert
Security Fabric · Multi-product integration (FGT + FSW + FAP + FAuth + FSandbox + FSIEM), SD-WAN advanced, ZTNA, HA design, kernel-level troubleshooting.
Juniper JNCIA-SEC (JN0-231)
SRX · Architecture, security zones & screens, security policies, NAT (source/destination/static), IPsec VPN (Phase 1/2), UTM, Junos CLI.
Aruba ACMA (HPE6-A85)
WLAN · 802.11ax, Mobility Master/Controller, AP modes, WLAN configuration, 802.1X/EAP, ARM, Captive Portal, ClearPass integration basics.
Check Point CCSM — Master
R81.20 expert · ClusterXL deep-dive, SecureXL/CoreXL acceleration, route-based VPN VTI, Identity Awareness, IPS tuning, performance debug (`fw monitor`, `cpview`).
Splunk Enterprise Certified Admin
Splunk Core · Distributed search, indexer/SH clustering (RF/SF), data inputs (HEC/forwarders), props/transforms, config precedence, monitoring console.
Splunk Enterprise Security Admin
ES · Data Model acceleration, correlation searches, notable events, Asset & Identity, Threat Intel Framework, RBA (risk-based alerting), Investigation Workbench.
CompTIA Cloud+ (CV0-004)
Cloud · Architecture, IaC (Terraform/CloudFormation/Bicep), operations, security (IAM/encryption/network segmentation), troubleshooting, cost optimization.
CompTIA Linux+ (XK0-005)
Linux · systemd, dnf/apt, SELinux/AppArmor, firewalld/nftables, LVM/parted, bash scripting, podman/docker, Ansible basics, GRUB2/journalctl troubleshooting.
GIAC GCIH — Incident Handler
SANS · PICERL lifecycle, attacker tools (nmap/Metasploit/Mimikatz/Cobalt Strike/BloodHound), password attacks, OWASP Top 10, privilege escalation, malware analysis basics.
CrowdStrike CCFA — Falcon Admin
EDR · Falcon console, host groups, prevention policies (ML levels/IOAs/ransomware), Sensor Update Policies, Custom IOAs, RTR (Real-Time Response), Falcon Identity.
Okta Certified Professional
IAM/IdP · Universal Directory, SAML 2.0 / OIDC integration, SCIM 2.0 provisioning, Sign-On policies, MFA factors (FIDO2/WebAuthn), Lifecycle Management, System Log.
CyberArk Defender (CDE)
PAM · Vault/CPM/PSM/PVWA architecture, Safes & permissions, Master Policy + Platforms, account onboarding, Verify/Change/Reconcile, session recording, DR replication.
Netskope NCCSA
SASE/SSE · NewEdge data plane, Cloud XD, traffic steering (client/IPSec/GRE/Explicit Proxy), Real-time vs API CASB, Cloud Confidence Index, DLP, ATP, NPA (ZTNA).
Zero Trust Security
ZIA Administrator
Zscaler Internet Access deployment, configuration, and administration.
Start PracticeZIA & ZPA Administrator
Zscaler Internet Access and Private Access configuration and management.
Start PracticeZscaler Digital Transformation Admin (ZDTA)
Validate skills across the Zscaler Zero Trust Exchange — ZIA, ZPA, ZDX, identity (SAML/SCIM), connectivity (ZCC, App Connector), threat protection (ATP, sandbox), DLP, CASB, automation, and Risk360.
ZIA/ZPA Advanced Troubleshooting
App Connectors, NSS commands, SAML errors, ZCC modes, ZIA SSL/URL policies, ZPA tunnel diagnostics, ZDX, and ZIA architecture deep-dive.
ZDX Advanced Practice
70-question premium exam: ZDX architecture, scoring, Cloud Path, Deep Tracing, Autosense, Integrations + Technical Fill-in-the-Blank MCQs.
Zscaler ZDX Administrator
Digital Experience Monitoring — ZDX architecture, probes (Web/CloudPath/Application/Custom), Deep Tracing, Autosense ML, Microsoft Teams integration (MOS correlation), alerts, Z-Apps, ZCC integration.
Zscaler Support Specialist
ZIA + ZPA support engineer — auth troubleshooting (SAML/SCIM), forwarding methods (ZCC/GRE/IPsec/PAC), SSL inspection, URL/app filtering, ZPA App Connectors, Browser Access, NSS log streaming, ZCC client diagnostics.
Zscaler ZIA Administrator (ZCCA-IA)
Zscaler Internet Access certified-admin path — Cloud architecture, GRE/IPSec/PAC forwarding, Z-Tunnel 1.0 vs 2.0, sub-locations, SAML/SCIM provisioning, URL Filtering, Cloud App Control, SSL inspection bypass, ATP, Cloud Sandbox quarantine, DLP + NSS audit trail.
Network Security
Network Security Fundamentals
72-question MCQ covering CIA Triad, Firewalls, Malware, MFA, Access Control, Cisco tools, Palo Alto architecture, Cryptography & more.
Palo Alto NGFW Engineer (PCNSE replacement)
Deploy, configure, and operate PAN-OS Next-Generation Firewalls at scale — interfaces, zones, HA, routing, GlobalProtect, IPSec, certificates, User-ID, Panorama, automation. Aligned with the official Palo Alto Nov-2025 blueprint.
Palo Alto SD-WAN Simulator
Specialized domains including SD-WAN, SSE, XDR, XSIAM, and XSOAR Analyst/Engineer.
Start PracticeCortex XSIAM Analyst
Alerting, Incident Handling, Playbooks, and Data Analysis with XQL.
Start PracticeFortinet NSE 4 (FCP FortiGate 7.4)
FortiGate Security Specialist — deployment, HA (FGCP/FGSP), VDOM, firewall policies, NAT/VIP, FSSO, ZTNA, content inspection (AV/IPS/Web Filter/DLP), routing, OSPF/BGP/SD-WAN, IPSec/SSL VPN, ADVPN.
Cisco CCNA 200-301 (v1.1)
Networking foundation — OSI/TCP-IP, IPv4/IPv6 subnetting, VLAN/trunking/STP, OSPFv2 single-area, FHRP (HSRP/VRRP), NAT/PAT, DHCP, ACLs, AAA/TACACS+, wireless (WPA3, 802.1X), automation (REST, JSON, Ansible), SDN, AI/ML in networking.
Cisco CCNP SCOR 350-701
CCNP Security Core — Cisco Secure Firewall (Firepower), ISE (NAC + 802.1X), Umbrella (SSE/DNS security), Duo (MFA + ZTNA), Secure Endpoint (EDR), Stealthwatch, IPSec/DMVPN/FlexVPN, TrustSec.
CompTIA Network+ (N10-009)
The foundational networking certification — OSI/TCP-IP, IPv4/IPv6 subnetting, VLAN/STP/trunking, OSPF/BGP/NAT, WiFi (WPA3, 802.1X), security, troubleshooting methodology, cable types, cloud networking, SDN/NFV.
Palo Alto PCCET
Cybersecurity Entry-Level Technician — foundational cyber concepts (CIA, Defense-in-Depth, Zero Trust), networking, cloud & SASE, endpoint security, SOC operations, IAM, cryptography, compliance frameworks.
Palo Alto PCNSC
Network Security Consultant — workshop facilitation, NGFW architecture (SP3, HA, V-Wire), security policy design, User-ID/CIE, SD-WAN, Panorama device groups + templates, threat prevention strategy, migration via Expedition.
Palo Alto PCCSE
Prisma Cloud Security Engineer (CNAPP) — CSPM + CWPP + CIEM + DSPM + Code Security, multi-cloud onboarding, RQL, admission control, agentless scanning, Bridgecrew IaC, WAAS, attack-path graph, auto-remediation.
Palo Alto PSE Architect (Strata)
Strata Network Security Architect — strategy & customer engagement, Zero Trust architecture, SASE/SSE design, NGFW capacity planning, Prisma Access, SD-WAN integration, Strata-Cortex unified data lake, migration phases, Day-2 operations.
Check Point CCSA R81.20
Certified Security Administrator R81.20 — three-tier architecture (SmartConsole + SMS + Gateway), SIC, policy management with Inline Layers, NAT (Auto vs Manual), Identity Awareness, S2S/Remote Access VPN, SmartLog/SmartEvent, Threat Prevention blades, ClusterXL, Gaia OS, MDS for MSPs.
Check Point CCSE R81.20
Certified Security Expert R81.20 — advanced ClusterXL (HA/Load Sharing/VRRP), policy edge cases, dynamic routing (BGP/OSPF/PBR), Anti-Spoofing, Route-based VPN with VTI, Mobile Access, performance tuning (SecureXL/CoreXL/F2F), SandBlast, custom SmartEvent correlation, Identity Collector, cluster sync.
Application Delivery
F5 201 TMOS Administration (BIG-IP)
BIG-IP Administrator certification — TMOS architecture, LTM virtual servers / pools / profiles, persistence, monitors, troubleshooting (tcpdump, qkview), system config (NTP, syslog, SNMP, UCS), Device Service Clustering HA, basic iRules.
F5 101 — Application Delivery Fundamentals
Foundational F5 cert — OSI model, TMOS architecture, BIG-IP modules (LTM/ASM/APM/AFM/DNS), load balancing algorithms, health monitors, persistence types, virtual server/pool/member hierarchy, SNAT, SSL termination, iRules basics, HA failover, GSLB.
F5 301 — LTM Specialist
Local Traffic Manager Specialist — connection table, profile inheritance, OneConnect, custom HTTP monitors, iRule event ordering, OCSP stapling, mTLS, persistence mirroring, qkview/iHealth diagnostics, tcpdump on BIG-IP, HA pair upgrade workflow.
Cloud Architecture
Azure AZ-900 (Fundamentals)
Microsoft's entry-level Azure cert — cloud concepts (IaaS/PaaS/SaaS, public/private/hybrid), Azure architecture & services (Compute, Storage, Networking, Identity), management & governance (ARM, Cost Management, SLA), identity, privacy, compliance, trust.
Azure AZ-104 (Administrator Associate)
Most-demanded Azure cert — identity & governance (Azure AD, RBAC, PIM, Conditional Access), storage (replication, blob/file, SAS), VMs (availability sets/zones, scale sets, disks), networking (VNet, peering, NSG, Bastion, Load Balancer), monitoring & backup (Log Analytics, Backup, Site Recovery).
AWS Solutions Architect Associate (SAA-C03)
The most-attempted cloud certification globally — Design Secure / Resilient / High-Performing / Cost-Optimized architectures on AWS. IAM, VPC, EC2, S3, RDS/Aurora, Lambda, DynamoDB, KMS, CloudFront, Multi-AZ, DR strategies, FinOps.
Microsoft AZ-500 (Azure Security Engineer)
Microsoft Certified: Azure Security Engineer Associate — Microsoft Entra ID, Conditional Access, PIM, RBAC, NSG/Azure Firewall, Bastion, Private Endpoints, Key Vault, Defender for Cloud, Microsoft Sentinel.
Microsoft SC-200 (SOC Analyst)
Most-demanded Microsoft security exam — Microsoft Sentinel (SIEM/SOAR), Defender XDR (Endpoint, Identity, O365, Cloud Apps), Defender for Cloud, KQL, threat hunting, automation rules, playbooks.
Microsoft SC-100 (Cybersecurity Architect)
Microsoft's most prestigious security cert — Zero Trust strategy, ransomware resilience, identity strategy, security posture, SOC strategy, IoT/OT, hybrid + multi-cloud security architecture.
AWS Security Specialty (SCS-C02)
Advanced AWS security cert — GuardDuty, Security Hub, Detective, Macie, Inspector, KMS/CloudHSM, IAM strategy, VPC security, multi-account governance, IR automation.
AWS Cloud Practitioner CLF-C02
Foundational AWS cert — cloud concepts, security & compliance, technology & services (EC2, S3, VPC, IAM, Lambda, RDS, DynamoDB, CloudFront), billing, pricing & support, Well-Architected Framework. Entry point to AWS certification path.
GCP Associate Cloud Engineer
Google Cloud's most popular cert — setting up cloud environment, planning & configuring, deploying & implementing (GCE/GKE/Cloud Run/App Engine), networking (VPC, Cloud Load Balancing), operations, access & security.
AWS SAP-C02 (Solutions Architect Professional)
AWS's flagship architect cert — multi-account orgs (SCPs, Control Tower), TGW, hub-spoke, multi-region active-active (DynamoDB Global Tables, Aurora Global, Spanner-equivalent), DR strategies, migration patterns, advanced security (Macie, GuardDuty, IAM Identity Center).
AWS DOP-C02 (DevOps Pro)
AWS DevOps Engineer Professional — multi-account CI/CD, blue/green ECS, Lambda canary, IaC drift detection, Systems Manager State Manager, Aurora Global, AWS FIS chaos engineering, distributed tracing X-Ray, GuardDuty auto-remediation, Service Catalog.
AWS AIF-C01 (AI Practitioner)
Brand-new AI fundamentals cert — Amazon Bedrock (foundation models, Knowledge Bases, Agents, Guardrails), SageMaker JumpStart + Canvas, AWS AI services (Comprehend, Rekognition, Transcribe, Q), Responsible AI principles, prompt engineering, hallucination mitigation, RAG.
AWS DEA-C01 (Data Engineer Associate)
Newest AWS data engineering cert — ingestion (Kinesis, MSK, DataSync, DMS), data stores (S3 + Iceberg + Lake Formation, Redshift RA3, Athena), Glue ETL, streaming (Kinesis Analytics for Flink), security (Macie, Lake Formation row/column), Aurora zero-ETL, DataZone.
GCP Professional Cloud Architect
Premium GCP architect cert — designing for business goals, compute & storage selection (GCE/GKE/Cloud Run/App Engine), Spanner, global VPC + Shared VPC, Cloud Interconnect, Workload Identity Federation, VPC Service Controls, Cloud KMS modes, BigQuery, multi-region DR.
GCP Professional Data Engineer
Premium GCP data cert — BigQuery (slots, partitioning, clustering, materialized views, vector search), BigLake (Iceberg), Dataflow (Apache Beam), Dataproc Serverless, Pub/Sub Subscription to BQ, Vertex AI integration, BQML, Dataform, Dataplex, governance (DLP, VPC-SC, RAPs).
Microsoft Azure · Core Infrastructure
Microsoft AZ-204 (Azure Developer)
Azure Developer Associate — develop compute (Functions, Container Apps, App Service), Storage (Blob, Cosmos DB), Security (managed identity, Key Vault, MSAL OAuth2 flows), monitoring (App Insights, OpenTelemetry), connect services (API Management, Service Bus, Event Grid, SignalR).
Microsoft AZ-305 (Solutions Architect Expert)
Microsoft's flagship cloud architect cert — design identity & governance (Entra, Landing Zones), data storage (Cosmos DB, SQL MI, Fabric), business continuity (ASR, multi-region, BIA-driven RTO/RPO), infrastructure (hub-spoke, Front Door, App Gateway, ExpressRoute, AKS).
Microsoft AZ-400 (DevOps Engineer Expert)
Azure DevOps Engineer Expert — process & comms (Boards, branch policies), source control (trunk-based, Git LFS), pipelines (YAML templates, multi-stage, canary, GitHub Actions), security (CodeQL, Defender for DevOps), instrumentation (OpenTelemetry, DORA), SRE practice (SLO/SLI, chaos, GitOps).
Microsoft AZ-700 (Network Engineer)
Azure Network Engineer Associate — hybrid networking (VPN, ExpressRoute, Virtual WAN), core networking (NSG, ASG, Virtual Network Manager, peering), routing (UDR, BGP, Route Server), application delivery (Front Door, App Gateway WAF, Traffic Manager), security (Firewall Premium, Private Endpoint, DDoS), monitoring (Network Watcher, flow logs).
Microsoft AZ-800 (Hybrid Admin Core)
Windows Server Hybrid Administrator Associate — AD DS (FSMO, RODC, Group Policy), hybrid management (Azure Arc, WAC), VMs/containers (Hyper-V, S2D, Storage Spaces Direct), networking (DHCP failover, DNSSEC, Always-On VPN), storage (Storage Replica, File Sync, DFSR), migration (Azure Migrate, DMS).
Microsoft AZ-801 (Hybrid Advanced)
Configuring Windows Server Hybrid Advanced Services — security (WDAC, Credential Guard, BitLocker, JEA, Defender for Servers Plan 2), HA (Failover Cluster, CAU, Always On AG, Storage Replica stretch), DR (ASR, Backup, VSS, MARS), migration (Storage Migration Service, ADMT), monitor & troubleshoot (PerfMon, Sysinternals, WEF, AMA).
Microsoft AZ-140 (Azure Virtual Desktop)
Configuring & Operating Azure Virtual Desktop Specialty — plan host pools (pooled/personal, multi-session), implement infra (FSLogix, Compute Gallery, MSIX app attach), access (Conditional Access, Trusted Launch, Private Link), user env & apps (Office optimization, Teams optimization, GPU pools), monitor (Insights, scaling plan, drain mode).
Microsoft Azure · Data & AI
Microsoft AI-900 (AI Fundamentals)
Azure AI Fundamentals — Responsible AI principles, ML workloads (supervised, unsupervised, reinforcement), Computer Vision (Image Analysis 4.0, Custom Vision, Face), NLP (Language, Speech, Translator), Document Intelligence, Knowledge Mining, Generative AI (Azure OpenAI, RAG, AI Foundry, prompt engineering).
Microsoft AI-102 (AI Engineer)
Azure AI Engineer Associate — plan & manage (auth, private endpoint, CMK), Computer Vision (Spatial Analysis, Custom Vision export, face liveness), NLP (CLU, Custom Speech, Translator Document), Knowledge Mining (AI Search, vector + hybrid, skillsets), Generative AI (Azure OpenAI deployments, function calling, Assistants, prompt flow, On-Your-Data, Content Safety).
Microsoft DP-900 (Data Fundamentals)
Azure Data Fundamentals — core data concepts (structured/semi/unstructured, OLTP vs OLAP, lakehouse), relational (Azure SQL DB, MI, Hyperscale, PostgreSQL flexible), NoSQL (Cosmos DB APIs, ADLS Gen2), analytics (Synapse, Fabric, OneLake, Power BI, Databricks, ETL/ELT, star/snowflake schemas).
Microsoft DP-100 (Data Scientist)
Azure Data Scientist Associate — design & prepare ML solution (compute clusters, data assets, MLflow), explore & train (feature engineering, AutoML, HyperDrive, MLflow tracking), deploy (managed online endpoints, batch endpoints, ONNX, blue/green), monitor (data drift, MLOps maturity, CI/CD), Responsible AI (interpretability, fairness, differential privacy).
Microsoft DP-203 (Data Engineer)
Azure Data Engineer Associate — storage (ADLS Gen2, Delta Lake, medallion architecture, partitioning, Synapse distribution methods), data processing (ADF, Mapping Data Flow, Spark tuning, MERGE, COPY INTO), streaming (Stream Analytics windows, Event Hubs, Spark Structured Streaming), management (Synapse vs Fabric, Purview, RLS), monitoring & optimization.
Microsoft DP-300 (SQL DB Administrator)
Azure SQL Database Administrator Associate — plan & implement (vCore vs DTU, Hyperscale, Serverless, MI vs DB), security (Always Encrypted, TDE, DDM, Defender for SQL, auditing), monitor & optimize (Query Store, automatic tuning, wait stats, deadlock graphs), automation (Elastic Jobs, Az.Sql), HA/DR (failover groups, LTR, MI link).
Microsoft DP-420 (Cosmos DB Developer)
Azure Cosmos DB Developer Specialty — data models (embed vs reference, hierarchical PKs, synthetic keys), distribution (consistency levels, multi-region writes, throughput modes), integration (change feed, Synapse Link, vector search, MongoDB API), optimization (RU charge, indexing policy, TTL, hot partitions, item size limits), maintenance (continuous backup, monitoring, Always Encrypted).
Microsoft DP-700 (Fabric Data Engineer)
Microsoft Fabric Data Engineer Associate — analytics environment (workspace + capacity, OneLake shortcuts, item types), data engineering (Lakehouse vs Warehouse, pipelines, Spark notebooks, Eventstream, Eventhouse KQL), warehouse (T-SQL with multi-table transactions, COPY INTO, SQL endpoint), lakehouse (Delta Lake, V-Order, Direct Lake), real-time & ML (Reflex/Activator), governance (Purview, RLS).
Microsoft Security & Compliance
Microsoft SC-900 (Security, Compliance & Identity Fundamentals)
Foundational Microsoft Security cert — security/compliance/identity concepts (Zero Trust, defense-in-depth, CIA, shared responsibility), Microsoft Entra (hybrid identity, Conditional Access, PIM, Identity Protection, External ID), security solutions (Sentinel, Defender XDR, Defender for Cloud, Bastion, DDoS, Defender for Identity, CASB), compliance (Purview, sensitivity labels, DLP, eDiscovery, Compliance Manager).
Microsoft SC-300 (Identity & Access Administrator)
Identity & Access Administrator Associate — implement Entra identities (Connect Sync vs Cloud Sync, dynamic groups, Domain Services), authentication & access (phishing-resistant MFA, number matching, Conditional Access session controls, CAE, cross-tenant access), app management (registration vs enterprise app, OAuth2 flows, app proxy, workload identity federation), governance (Entitlement Management, access reviews, PIM, Lifecycle Workflows, ToU).
Microsoft SC-401 (Information Security Administrator)
Information Security Administrator Associate — Information Protection (sensitivity labels, SITs, EDM, trainable classifiers, DKE), DLP (M365 + endpoint + Power Platform, Adaptive Protection, simulation mode), Information Governance (retention policies vs labels, records management, disposition review), Insider Risk + Communication Compliance (anonymized investigations), eDiscovery & Audit (Premium, custodian management, legal hold).
Microsoft MS-900 (M365 Fundamentals)
Microsoft 365 Fundamentals — cloud concepts (SaaS/PaaS/IaaS, public/private/hybrid, OPEX vs CAPEX), M365 apps & services (Office apps, Teams, Copilot, Viva, Power Platform, OneDrive vs SharePoint vs Teams files), security/compliance/privacy/trust (Entra, Defender XDR, Sentinel, Intune, Purview, Zero Trust, Customer Lockbox), pricing/licensing/support (Business vs Enterprise plans, E3 vs E5, FastTrack, SLA, channels).
Cyber Security Management
EC-Council CEH v12 (Ethical Hacker)
Most-demanded ethical hacking certification — Reconnaissance, scanning (Nmap), vulnerability assessment, Metasploit, web app pen testing (Burp/SQLMap), wireless attacks, password cracking (Hashcat), Mimikatz/BloodHound, AD attacks, Cobalt Strike, MITRE ATT&CK, Cyber Kill Chain.
ISC2 Certified in Cybersecurity (CC)
The FREE entry-level cybersecurity certification from ISC2 — Security Principles, BC/DR/IR Concepts, Access Controls (DAC/MAC/RBAC/ABAC, MFA, FIDO2), Network Security (firewalls, NGFW, WAF, IDS/IPS, VPN), Security Operations.
CompTIA Security+ SY0-701
The most demanded entry-level cybersecurity certification — General Security Concepts, Threats/Vulns/Attacks (incl. AI threats 2026), Security Architecture, Operations (SIEM/SOAR/EDR/XDR), Program Management & Oversight, GDPR/HIPAA/PCI.
CISSP – Domain 1 Practice Exam
Security & Risk Management — 114 questions with INSTANT feedback and explanations after each answer. Free navigation, no timer. Pair with the timed Assessment.
CISSP – Domain 1 Assessment
Security & Risk Management — Governance, Risk, Compliance (GDPR/HIPAA/PCI/SOX), BCP, ISC2 Ethics, threat modeling, and supply chain risk under exam conditions.
CISSP – Domain 2 Practice Exam
Asset Security — 114 questions with INSTANT feedback and explanations after each answer. Free navigation, no timer. Pair with the timed Assessment.
CISSP – Domain 2 Assessment
Asset Security — Data classification, ownership, GDPR privacy principles, retention, encryption (rest/transit/use), KMS/HSM, and NIST SP 800-88 sanitization under exam conditions.
CISSP – Domain 3 Practice Exam
Architecture & Engineering — 114 questions with INSTANT feedback and explanations after each answer. Free navigation, no timer. Pair with the timed Assessment.
CISSP – Domain 3 Assessment
Security Architecture & Engineering — Secure design, security models (BLP/Biba/Clark-Wilson), Common Criteria/EAL, deep cryptography (40 questions), PKI, physical security under exam conditions.
CISSP – Domain 4 Practice Exam
Communication & Network Security — 114 questions with INSTANT feedback and explanations after each answer. Free navigation, no timer. Pair with the timed Assessment.
CISSP – Domain 4 Assessment
Communication & Network Security — OSI/TCP-IP, NGFW/WAF/IDS/IPS, IPSec/TLS 1.3 VPN/ZTNA/SASE, WPA3/EAP, DNSSEC/DoH, email security, SDN/5G under exam conditions.
CISSP – Domain 5 Practice Exam
Identity & Access Management — 114 questions with INSTANT feedback and explanations after each answer. Free navigation, no timer. Pair with the timed Assessment.
CISSP – Domain 5 Assessment
Identity & Access Management — MFA, FIDO2/WebAuthn, biometrics (FAR/FRR/CER), SAML/OAuth/OIDC/JWT, Kerberos, RADIUS/TACACS+, DAC/MAC/RBAC/ABAC under exam conditions.
CISSP – Domain 6 Practice Exam
Security Assessment & Testing — 107 questions with INSTANT feedback and explanations after each answer. Free navigation, no timer. Pair with the timed Assessment.
CISSP – Domain 6 Assessment
Security Assessment & Testing — VA vs Pen Test, white/grey/black box, SAST/DAST/IAST/SCA/RASP, BAS, red/blue/purple team, BCP testing, SOC reports, ISO 27001 audits under exam conditions.
CISSP – Domain 7 Practice Exam
Security Operations — 111 questions with INSTANT feedback and explanations after each answer. Free navigation, no timer. Pair with the timed Assessment.
CISSP – Domain 7 Assessment
Security Operations — IR (NIST 800-61), SIEM/UEBA, threat hunting, forensics, NIST 800-88 sanitization, BCP/DR, RTO/RPO/MTD, recovery sites, physical security, fire suppression — 15 subdomains.
CISSP – Domain 8 Practice Exam
Software Development Security — 113 questions with INSTANT feedback and explanations after each answer. Free navigation, no timer. Pair with the timed Assessment.
CISSP – Domain 8 Assessment
Software Development Security — SDLC, Agile/DevSecOps, threat modeling (STRIDE/PASTA/DREAD), CMMI/SAMM/BSIMM, OWASP Top 10, SQLi/XSS/CSRF/IDOR/SSRF, API security, secure coding under exam conditions.
CISSP Full Mock #1 — All 8 Domains
The closest thing to the real exam — 150 questions across all 8 CISSP domains in ISC2-weighted distribution. The flagship assessment for full CBK readiness check.
Offensive Security OSCP (PEN-200)
The benchmark hands-on offensive security cert — Nmap NSE recon, web exploitation, buffer overflows, Linux/Windows privilege escalation, Active Directory attacks (Kerberoasting, BloodHound, PtH), tunneling/pivoting, and reporting workflow.
ISACA CISA
Certified Information Systems Auditor — IS audit process, governance & management of IT, SDLC and acquisition, operations & service management, asset protection, BCP/DRP. Manager mindset for the global gold-standard IT audit cert.
ISACA CISM
Certified Information Security Manager — info-sec governance, risk management, security program development & management, incident management. Strategic CISO-track cert respected globally.
ISC2 CCSP
Certified Cloud Security Professional — cloud concepts/architecture, cloud data security, platform & infra security, application security, operations, legal/risk/compliance. Advanced cloud security cert from ISC2.
CompTIA CySA+ CS0-003
Cybersecurity Analyst — SOC operations (MITRE ATT&CK, Sysmon, YARA, Sigma), vulnerability management, incident response (NIST IR lifecycle), reporting & communication. Most popular blue-team analyst cert.
CompTIA PenTest+ PT0-003
Penetration Tester — scoping & RoE, recon (passive/active), attacks (web, AD, wireless, mobile, cloud), reporting & communication, tools (Nmap, Burp, Metasploit, BloodHound). Practical red-team cert without OSCP's lab brutality.
CISSP AI Learning Hub
Interactive 6-week roadmap, mindset drills, study tracker, and optimized AI prompts for mastering CISSP.
Open Learning HubDevOps · IaC · Containers
HashiCorp Terraform Associate (003)
The most-demanded IaC certification — Terraform workflow (init/plan/apply), state management, modules, providers, HCP Terraform, Sentinel/OPA policy as code, multi-cloud automation.
Kubernetes CKA
Certified Kubernetes Administrator — cluster architecture (kubeadm, etcd), workloads (Deployments, StatefulSets, DaemonSets), services + networking (CNI, NetworkPolicy, Ingress), storage (PV/PVC), troubleshooting.
Kubernetes CKAD
Certified Kubernetes Application Developer — application design & build (Pods, ConfigMaps, Secrets), deployment (rolling updates, Helm, Kustomize), observability (probes, logs, kubectl debug), security (RBAC, NetworkPolicy), services & networking.
Kubernetes CKS
Certified Kubernetes Security Specialist — cluster setup hardening, system hardening, minimize microservice vulnerabilities (OPA Gatekeeper, Kyverno, gVisor), supply chain (Trivy, Cosign, SBOM), runtime (Falco, audit logs).
HashiCorp Vault Associate (002)
Secrets management & encryption-as-a-service cert — auth methods (AppRole, K8s, AWS, OIDC), secrets engines (KV v2, dynamic DB, transit, PKI), policies & RBAC, Vault architecture (Raft, HA, DR), CLI/API/Agent.
Databricks Data Engineer Associate
Booming lakehouse cert — Lakehouse architecture, Unity Catalog (account-level metastore + lineage + RBAC), Delta Lake (MERGE, time travel, OPTIMIZE, Z-Order, Liquid Clustering), Auto Loader, Delta Live Tables (DLT) + APPLY CHANGES INTO for CDC, Photon engine, Workflows orchestration, SQL warehouses, Structured Streaming, Asset Bundles for CI/CD.
IT Foundations · Service Management
CompTIA A+ Core 1+2
Industry-standard entry-level IT support cert — mobile devices, networking (ports, Wi-Fi, cabling), hardware (DDR5, NVMe, PSU), virtualization & cloud, troubleshooting methodology, operating systems, security. Required by many help-desk and field-tech roles.
ITIL 4 Foundation
Most popular IT Service Management cert — service value system, four dimensions of service mgmt, seven guiding principles, ITIL practices (incident, problem, change enablement, service request, configuration, info security, service level, supplier). Prerequisite for all higher ITIL certs.