CompTIA PenTest+

CompTIA PenTest+ is for cybersecurity professionals tasked with penetration testing and vulnerability management. Take Your Penetration Testing Knowledge To the Next Level

Demonstrate Competency of Current Trends Unlike other penetration testing exams that only cover a portion of stages with essay questions and hands-on, CompTIA PenTest+ uses both performance-based and knowledge-based questions to ensure all stages are addressed.

Become an Expert in Vulnerability Management CompTIA PenTest+ is the only exam on the market covering hands-on vulnerability assessment, scanning and analysis, as well as planning, scoping, and managing weaknesses.

Prove You Know the Latest Techniques CompTIA PenTest+ requires a candidate to demonstrate the most relevant pen testing skills for the cloud, hybrid environments, web applications, Internet of Things (IoT) and traditional on-premises. What Skills Will You Learn?

Planning and Scoping Includes updated techniques emphasizing governance, risk and compliance concepts, scoping and organizational/customer requirements, and demonstrating an ethical hacking mindset

Information Gathering and Vulnerability Scanning Includes updated skills on performing vulnerability scanning and passive/active reconnaissance, vulnerability management, as well as analyzing the results of the reconnaissance exercise

Attacks and Exploits Includes updated approaches to expanded attack surfaces, researching social engineering techniques, performing network attacks, wireless attacks, application-based attacks and attacks on cloud technologies, and performing post-exploitation techniques

Reporting and Communication Expanded to focus on the importance of reporting and communication in an increased regulatory environment during the pen testing process through analyzing findings and recommending appropriate remediation within a report

Tools and Code Analysis Includes updated concepts of identifying scripts in various software deployments, analyzing a script or code sample, and explaining use cases of various tools used during the phases of a penetration test–scripting or coding is not required