CompTIA PenTest+

On this accelerated 4-day CompTIA PenTest+, you'll get the skills you need to identify, exploit, report, and manage vulnerabilities on a network, 30% faster than traditional training.

This course builds upon skills learnt from CompTIA Security+ certification and provides you with the intermediate skills and best practice for penetration testing.

Your expert instructor will teach you up-to-date penetration testing skills, helping you develop vulnerability assessment techniques and the management skills necessary to determine how resilient a network is to attacks.

You'll learn to:

• customise assessment frameworks
• report penetration test findings
• communicate recommended strategies

You'll be immersed in the curriculum with our unique Lecture | Lab | Review technique, which combines theory and practical skills to help you retain information faster. With 24/7 lab access, you'll have the opportunity to test your penetration and vulnerability assessment skills whenever you like.

On this course, you'll prepare for and take the CompTIA PenTest+ exam, which is covered by your Certification Guarantee. The performance-based PenTest+ exam involves hands-on simulations, proving you've moved beyond theory and have the practical skills to carry out penetration testing techniques.

Achieving this certification qualifies you for a role as a:

• Penetration Tester
• Vulnerability Tester
• Security Analyst (II)
• Vulnerability Assessment Analyst
• Network Security Operations
• Application Security Vulnerability

If you're an intermediate level cyber security professional tasked with penetration testing, this course is ideal for you.

Planning and Scoping

• Explain the importance of planning for an engagement
• Explain key legal concepts.
• Explain the importance of scoping an engagement properly.
• Explain the key aspects of compliance-based assessments.

Information Gathering and Vulnerability Identification

• Given a scenario, conduct information gathering using appropriate techniques
• Given a scenario, perform a vulnerability scan.
• Given a scenario, analyse vulnerability scan results
• Explain the process of leveraging information to prepare for exploitation.
• Explain weaknesses related to specialised systems

Attacks and Exploits

• Compare and contrast social engineering attacks
• Given a scenario, exploit network-based vulnerabilities
• Given a scenario, exploit wireless and RF-based vulnerabilities
• Given a scenario, exploit application-based vulnerabilities
• Given a scenario, exploit local host vulnerabilities
• Summarise physical security attacks related to facilities
• Given a scenario, perform post-exploitation techniques

Penetration Testing Tools

• Given a scenario, use Nmap to conduct information gathering exercises
• Compare and contrast various use cases of tools
• Given a scenario, analyse tool output or data related to a penetration test
• Given a scenario, analyse a basic script (limited to Bash, Python, Ruby, and PowerShell)

Reporting and Communication

• Given a scenario, use report writing and handling best practices
• Explain post-report delivery activities
• Given a scenario, recommend mitigation strategies for discovered vulnerabilities
• Explain the importance of communication during the penetration testing process

Before attending this course, you should have:

• Network+, Security+ or equivalent knowledge
• A minimum of 2-3 years of hands-on information security or related experience

You'll sit the following exam at the Firebrand Training Centre, covered by your Certification Guarantee:

PenTest+ - PTO-002

• Domain 1.0 Planning and Scoping (14%)
• Domain 2.0 Information Gathering and Vulnerability Scanning (22%)
• Domain 3.0 Attacks and Exploits (30%)
• Domain 4.0 Reporting and Communication (18%)
• Domain 5.0 Tools and Code Analysis (16%)