What is the PHREAK^™?

As the Computer Academic Underground's third accredited credential in the field of information security, the CAU Phone Hacker, Researcher, Exploiter, And Konqueror (PHREAK^™) certification provides phone phreaks with not only an objective measure of competence but a globally recognized standard of achievement.

The PHREAK^™ credential is ideal for all phone phreaks who specialize in vulnerability and exploit development for telephony systems.

Why Certify?

Phreaks are the key to getting into a secure phone system.

Having the acronym "PHREAK" next to your name in your email signature lets others know where you stand. Also, releasing vulnerabilites and exploits can gain you mad rep in the hacker underground, and being certified to do so makes you look that much cooler. Also, you can sell 0day to companies like iDefense or the Russian Mafia for t3h ca$h.

Benefits of Certification to the Hacker

• Demonstrates a working knowledge of vulnerability and exploit research & development
• Confirms commitment to the trade
• Offers a career differentiator, with enhanced credibility and marketability
• Provides access to valuable resources, such as peer networking and idea exchange
• More acronyms next to your name means more monies from the employer!

How to Certify

To become a PHREAK^™, a candidate must successfully complete two separate processes: Examination and Certification. The eligibility requirements to sit for the PHREAK^™ examination are completely separate from the eligibility requirements necessary to be certified.

Examination

To sit for the PHREAK^™ examination, a candidate must:

• Submit an 0day telephony-related vulnerability.
• Submit a working 0day exploit for the vulnerability.
• Allow CAU to release to the community the submitted 0day vulnerability and exploit as proof of your skills and reception of the PHREAK^™ certification.
• Reference at least 3 previous telephony-related security advisories you have authored and released to the community.

Certification

To be issued a certificate, a candidate must:

• Pass the PHREAK^™ exam with a scaled score of 800 points or greater.

Maintenance

In order to maintain an acquired PHREAK^™ certification, a certified individual must release no less than one new telephony vulnerability advisory to the community including a working exploit, per calendar quarter. This works out to a minimum of four per year if you don't want to do the math. To better facilitate our tracking of your eligibility, it is preferred if copies of all advisories that certified individuals release are sent directly to the CAU Certification Review Board (CAUCRB) at crb (at) caughq (dot) org.

Getting Started

Please contact the CAUCRB at crb (at) caughq (dot) org to begin the certification process.