CompTIA PenTest+ Certification

Overview 

​

CompTIA PenTest+ is an intermediate-level cybersecurity certification focused on penetration testing and vulnerability assessment and management skills. It validates a professional's ability to plan and execute penetration tests, identify vulnerabilities, perform attacks, and analyze and report results. The certification is designed for roles like penetration testers, vulnerability testers, and security analysts. 

​

Target Audience

 

Cybersecurity professionals, including penetration testers, vulnerability testers, and security analysts. 

​

How to earn this certification?

​

Candidates must complete the PT0-002 & PT0-003 exam codes. ​

​

Skills Overview 

​

• Engagement Management. Includes updated techniques emphasizing scoping and organizational/customer requirements, governance, risk and compliance concepts, reporting, communication, remediation recommendations and demonstrating an ethical hacking mindset. 

• Reconnaissance and Enumeration. Expanded coverage of information gathering, enumeration, and passive/active reconnaissance, with the goal of conducting inventory. Includes identifying scripts and explaining use cases of various scripting languages (scripting or coding is not required). 

• Vulnerability Discovery and Analysis. Updated skills that cover vulnerability scanning tools, analysis, management, and physical security weaknesses. 

• Attacks and Exploits. Includes new techniques to analyze targets, select the best approach, and perform network attacks, wireless attacks, application-based attacks, and cloud attacks. Learn about artificial intelligence (AI) attacks and scripting automation. 

• Post-exploitation and Lateral Movement. Additional focus on maintaining persistence, lateral movement, staging, exfiltration and post-exploitation, including clean up and restoration activities.