CompTIA PenTest+ (PT0-002)

CompTIA PenTest+ (PT0-002) comes with well-descriptive study guide consists of interactive lessons, knowledge checks, glossary terms, flashcards, quizzes to acquire an in-depth understanding of the concepts, such as planning and testing engagement, understanding compliance and legal requirements, using appropriate techniques and tools to perform vulnerability scanning and process testing  to analyze the outcomes, and so on. Interactive lessons and live labs within the course will provide you a hands-on experience of penetration testing.

Here’s what you will get

In order to attempt CompTIA PenTest+ exam, a candidate must demonstrate hands-on skills to complete a penetration testing engagement and mitigate security risk and vulnerabilities. PenTest+ assesses the most advanced penetration testing, and vulnerability assessment and management skills required to control the resiliency of the network against cyber-attacks.


13+ Lessons | 401+ Exercises | 232+ Quizzes | 571+ Flashcards | 457+ Glossary of terms


80+ Pre Assessment Questions |80+ Post Assessment Questions | 2+ Full Length Tests | 160+ Practice Test Questions

Hand on lab

40+ Live Lab | 40+ Video tutorials | 01:48+ Hours


CompTIA PenTest+ is a cybersecurity certification focused on penetration testing and vulnerability assessment. Earning the PenTest+ certification offers several benefits for individuals pursuing a career in cybersecurity:

Advanced Cybersecurity Skills: PenTest+ certification validates your advanced cybersecurity skills, including penetration testing, vulnerability assessment, and ethical hacking techniques.

Career Advancement: Holding a PenTest+ certification can lead to career advancement opportunities in the field of cybersecurity. Many organizations require certified professionals to identify and address security weaknesses.

Global Recognition: CompTIA is a globally recognized organization, and the PenTest+ certification is respected by employers worldwide, making it valuable for international job opportunities.

Expertise in Penetration Testing: The certification focuses specifically on penetration testing methodologies and techniques, making you proficient in identifying and exploiting vulnerabilities within systems and networks.

Enhanced Job Security: As cyber threats continue to evolve, the demand for cybersecurity professionals with penetration testing skills remains high. PenTest+ certification can enhance your job security.

Practical Skills: The PenTest+ certification involves hands-on experience with real-world penetration testing scenarios, allowing you to develop practical skills and experience.

Broad Scope: PenTest+ covers a wide range of penetration testing topics, including network, application, wireless, and cloud security. This breadth of knowledge makes you well-rounded in various testing domains.

Access to CompTIA Resources: CompTIA provides resources and tools for certified professionals, including access to the CompTIA Learning Center, networking opportunities, and ongoing educational materials.

Preparation for Specialization: PenTest+ serves as a foundation for more specialized certifications in cybersecurity, such as Certified Ethical Hacker (CEH) or Offensive Security Certified Professional (OSCP).

Increased Marketability: Having PenTest+ on your resume can make you more attractive to employers seeking professionals skilled in penetration testing and vulnerability assessment.

Real-World Application: PenTest+ certification equips you with skills that can be directly applied to real-world security challenges, helping organizations secure their systems and data.

Continuous Learning: Cybersecurity is a constantly evolving field. Maintaining your PenTest+ certification requires ongoing learning and staying updated with the latest security threats and mitigation techniques.


Passed the exam first try.
Jeyner A.
Loved the course, i feel even more confident to sit for the exam.
Gavin T.

Here's what you will learn

Course Outline

Lessons 1: Introduction

  • CompTIA
  • The PenTest+ Exam
  • What Does This Course Cover?
  • CompTIA PenTest+ Certification Exam Objectives

Lessons 2: Penetration Testing

  • What Is Penetration Testing?
  • Reasons for Penetration Testing
  • Who Performs Penetration Tests?
  • The CompTIA Penetration Testing Process
  • The Cyber Kill Chain
  • Tools of the Trade
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 3: Planning and Scoping Penetration Tests

  • Scoping and Planning Engagements
  • Penetration Testing Standards and Methodologies
  • Key Legal Concepts for Penetration Tests
  • Regulatory Compliance Considerations
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 4: Information Gathering

  • Footprinting and Enumeration
  • Active Reconnaissance and Enumeration
  • Information Gathering and Defenses
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 5: Vulnerability Scanning

  • Identifying Vulnerability Management Requirements
  • Configuring and Executing Vulnerability Scans
  • Software Security Testing
  • Developing a Remediation Workflow
  • Overcoming Barriers to Vulnerability Scanning
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 6: Analyzing Vulnerability Scans

  • Reviewing and Interpreting Scan Reports
  • Validating Scan Results
  • Common Vulnerabilities
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 7: Exploiting and Pivoting

  • Exploits and Attacks
  • Exploitation Toolkits
  • Exploit Specifics
  • Leveraging Exploits
  • Persistence and Evasion
  • Pivoting
  • Covering Your Tracks
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 8: Exploiting Network Vulnerabilities

  • Identifying Exploits
  • Conducting Network Exploits
  • Exploiting Windows Services
  • Identifying and Exploiting Common Services
  • Wireless Exploits
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 9: Exploiting Physical and Social Vulnerabilities

  • Physical Facility Penetration Testing
  • Social Engineering
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 10: Exploiting Application Vulnerabilities

  • Exploiting Injection Vulnerabilities
  • Exploiting Authentication Vulnerabilities
  • Exploiting Authorization Vulnerabilities
  • Exploiting Web Application Vulnerabilities
  • Unsecure Coding Practices
  • Steganography
  • Application Testing Tools
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 11: Attacking Hosts, Cloud Technologies, and Specialized Systems

  • Attacking Hosts
  • Credential Attacks and Testing Tools
  • Remote Access
  • Attacking Virtual Machines and Containers
  • Attacking Cloud Technologies
  • Attacking Mobile Devices
  • Attacking IoT, ICS, Embedded Systems, and SCADA Devices
  • Attacking Data Storage
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 12: Reporting and Communication

  • The Importance of Communication
  • Recommending Mitigation Strategies
  • Writing a Penetration Testing Report
  • Wrapping Up the Engagement
  • Summary
  • Exam Essentials
  • Lab Exercises

Lessons 13: Scripting for Penetration Testing

  • Scripting and Penetration Testing
  • Variables, Arrays, and Substitutions
  • Comparison Operations
  • String Operations
  • Flow Control
  • Input and Output (I/O)
  • Error Handling
  • Advanced Data Structures
  • Reusing Code
  • The Role of Coding in Penetration Testing
  • Summary
  • Exam Essentials

Lab Exercises

Hands-on LAB Activities

Information Gathering

  • Using dig and nslookup Commands
  • Performing Zone Transfer Using dig
  • Using Maltego to Gather Information
  • Using Recon-ng to Gather Information
  • Using Nmap for Network Enumeration
  • Performing Reconnaissance on a Network
  • Performing an Intense Scan in Zenmap
  • Using Nmap for User Enumeration
  • Performing Nmap UDP Scan
  • Performing Nmap SYN Scan

Vulnerability Scanning

  • Conducting Vulnerability Scanning Using Nessus

Analyzing Vulnerability Scans

  • Understanding Local Privilege Escalation

Exploiting and Pivoting

  • Performing Vulnerability Scanning Using OpenVAS
  • Searching Exploits Using searchsploit
  • Using Meterpreter
  • Using the Task Scheduler
  • Understanding the Pass-the-hash Attack
  • Using the Metasploit RDP Post-Exploitation Module

Exploiting Network Vulnerabilities

  • Performing ARP Spoofing
  • Simulating the DDoS Attack
  • Using the EternalBlue Exploit in Metasploit
  • Exploiting SMB
  • Exploiting SMTP
  • Exploiting SNMP

Exploiting Physical and Social Vulnerabilities

  • Using the SET Tool
  • Using BeEF

Exploiting Application Vulnerabilities

  • Exploiting Command Injection Vulnerabilities
  • Exploiting a Website Using SQL Injection
  • Conducting a Cross-Site Request Forgery Attack
  • Hiding Text Using Steganography
  • Using OWASP ZAP
  • Performing Session Hijacking Using Burp Suite

Attacking Hosts, Cloud Technologies, and Specialized Systems

  • Cracking Passwords
  • Cracking a Linux Password Using John the Ripper
  • Creating Reverse and Bind Shells Using Netcat

Scripting for Penetration Testing

  • Whitelisting an IP Address in the Windows Firewall
  • Viewing Exploits Written in Perl
  • Viewing the Effects of Hostile JavaScript in the Browser
  • Finding Live Hosts by Using the Ping Sweep in Python

Writing Bash Shell Script

Be the first to add a review.

Please, login to leave a review
Get course
Enrolled: 0 students
Lectures: 2
Level: Intermediate

Office Hours

Monday 9:00 am - 6.00 pm
Tuesday 9:00 am - 6.00 pm
Wednesday 9:00 am - 6.00 pm
Thursday 9:00 am - 6.00 pm
Friday 9:00 am - 6.00 pm
Saturday 10:00 am - 6.00 pm
Sunday 10:00 am - 6.00 pm