The CompTIA PenTest+ course is designed for IT professionals who want to develop penetration testing skills to enable them to identify information-system vulnerabilities and effective remediation techniques for those vulnerabilities. Introduces general concepts and methodologies related to penetration testing as you work your way through a simulated pen test for a fictitious company. The course covers the primary knowledge and skills required to plan and scope an assessment, understand legal and compliance requirements, perform vulnerability scanning and penetration testing, analyze data, and effectively report and communicate practical recommendations for action to properly protect information systems and their content. This course assists in the preparation for the CompTIA PenTest+ PT0-002 certification exam.
Learning Objectives
- Includes updated techniques emphasizing scoping and organizational/customer requirements, governance, risk and compliance concepts, reporting, communication, remediation recommendations and demonstrating an ethical hacking mindset.
- Includes new techniques to analyze targets, select the best approach, and perform network attacks, wireless attacks, application-based attacks, and cloud attacks. Learn about artificial intelligence (AI) attacks and scripting automation.
- Expanded coverage of information gathering, enumeration, and passive/active reconnaissance, with the goal of conducting inventory. Includes identifying scripts and explaining use cases of various scripting languages (scripting or coding is not required).
- Additional focus on maintaining persistence, lateral movement, staging, exfiltration and post-exploitation, including clean up and restoration activities.
- Updated skills that cover vulnerability scanning tools, analysis, management, and physical security weaknesses.
Prerequisite Skills
- Network+, Security+ or equivalent knowledge.
- Minimum of 3-4 years of hands-on information security or related experience.
- While there is no required prerequisite, PenTest+ is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus.