Hong Kong Financial Institutions that form part of the financial infrastructure must remain resilient to cyber attack. To help these institutions achieve this goal, the HKMA has launched the Cyber Security Resiliency Framework (CRF). CRF promotes an intelligence-led penetration testing approach that mimics the actions of cyber attackers intent on compromising an organisation’s Critical Functions and the technology assets and people supporting those functions. In this project, students are required understand and define what should be include in an Intelligence Led Penetration Test, and recommend tools to be used.