During the course, students will acquire general knowledge about the penetration testing process and methodologies. We will start by reviewing the basic concepts relevant to the course, e.g., engagement rules, attack surface, and enterprise networks. Then, we will present the common phases of any penetration testing activity, i.e., information gathering, vulnerability assessment, exploitation, and post-exploitation. Finally, we will learn how to write a vulnerability report.