Penetration Tester Plus - PenTest+
Class Overview
Global cybercrime costs are expected to grow 15% over the next five years. Now more than ever, it is imperative that organizations prevent sensitive data from falling into the wrong hands.
CompTIA’s Penetration Tester Plus
(commonly known as PenTest+) training introduces you to the knowledge and skills needed to understand how to plan and scope a penetration testing engagement, including vulnerability scanning, understanding legal and compliance requirements, analyzing results, and producing a written report with remediation suggestions. It will enhance your abilities to use penetration testing to identify, exploit, report, and manage vulnerabilities on a network.
This training addresses newer pen testing techniques for the latest attack surfaces, including the cloud, hybrid environments, and web applications, as well as more ethical hacking concepts, vulnerability scanning, and code analysis.
PenTest+ is compliant with ISO 17024 standards and approved by the US DoD to meet directive M/8140 - 8570.01 requirements.
Class Details
Objectives
After taking this training, the student should be able to:
- Plan and scope a penetration testing engagement.
- Understand legal and compliance requirements.
- Perform vulnerability scanning and penetration testing using appropriate tools and techniques, and then analyze the results.
- Produce a written report containing proposed remediation techniques, effectively communicate results to the management team, and provide practical recommendations.
Prerequisite Knowledge Advisory
Although there are no formal prerequisites, before taking this class you should have:
- 3-4 years hands-on experience performing penetration tests, vulnerability assessments, and code analysis.
- Network+ certification
Security+ certification
Required Exam for PenTest+ Certification
Exam: PT0-002
Proctor: PearsonVUE
Recertification: 3 years
PenTest+ Training Class Outline
Lesson 1: Scoping Organizational / Customer Requirements
Lesson 2: Defining the Rules of Engagement
Lesson 3: Footprinting and Gathering Intelligence
Lesson 4: Evaluating Human and Physical Vulnerabilities
Lesson 5: Preparing the Vulnerability Scan
Lesson 6: Scanning Logical Vulnerabilities
Lesson 7: Analyzing Scan Results
Lesson 8: Avoiding Detection and Covering Tracks
Lesson 9: Exploiting the LAN and Cloud
Lesson 10: Testing Wireless Networks
Lesson 11: Targeting Mobile Devices
Lesson 12: Attacking Specialized Systems
Lesson 13: Web Application-Based Attacks
Lesson 14: Performing System Hacking
Lesson 15: Scripting and Software Development
Lesson 16: Leveraging the Attack: Pivot and Penetrate
Lesson 17: Communicating During the PenTesting Process
Lesson 18: Summarizing Report Components
Lesson 19: Recommending Remediation
Lesson 20: Performing Post-Report Delivery Activities
Have questions?
Ready to find to get started?
Important Notice: NC-Expert does not accept enrollment applications from independent individuals. We require that employers pay for their employees. We continue to service corporate clients, using B2B transactions, with no change in service. We apologize for any inconvenience.
Our vision is to provide innovative, relevant, and accessible technical consulting and training for executives and engineers which will enable them to directly impact the growth of their companies.