This Information Assurance Certification Review Board certification addresses penetration testing methodologies, network reconnaissance and protocol attacks, vulnerability identification, Windows and Unix/Linux exploits, covert channels and rootkits, wireless security flaws, and web application vulnerabilities.