Announcement: Mindasys is now Skillet! Check out our new website.

Key points about this course

Duration : 4 Days
Course Fee : RM 4,450.00

HRD Corp Claimable Course

CompTIA PenTest+
Exam Code : PT0-001 & PT0-002

Virtual Class

Public Class

In House Training

Private Class

Course Overview

CompTIA PenTest+ is for cybersecurity professionals tasked with penetration testing and vulnerability management.

Why is it different?

CompTIA PenTest+ is the only penetration testing exam taken at a Pearson VUE testing center with both hands-on, performance-based questions and multiple-choice, to ensure each candidate possesses the skills, knowledge, and ability to perform tasks on systems. PenTest+ exam also includes management skills used to plan, scope, and manage weaknesses, not just exploit them.

PenTest+ is unique because our certification requires a candidate to demonstrate the hands-on ability and knowledge to test devices in new environments such as the cloud and mobile, in addition to traditional desktops and servers.

About the exam 

  • CompTIA PenTest+ assesses the most up-to-date penetration testing, and vulnerability assessment and management skills necessary to determine the resiliency of the network against attacks.
  • Successful candidates will have the intermediate skills required to customize assessment frameworks to effectively collaborate on and report findings.
  • Candidates will also have the best practices to communicate recommended strategies to improve the overall state of IT security.

CompTIA PenTest+ is compliant with ISO 17024 standards and approved by the US DoD to meet directive 8140/8570.01-M requirements. Regulators and government rely on ANSI accreditation, because it provides confidence and trust in the outputs of an accredited program. Over 2.3 million CompTIA ISO/ANSI-accredited exams have been delivered since January 1, 2011.

Course Prerequisites

Basic computer literacy. Basic PC operating system navigation skills. Basic Internet usage skills. Basic IP address knowledge.

You will learn how to

Upon completing this course, the learner will be able to meet these overall objectives:

  • Describe network fundamentals and build simple LANs
  • Establish Internet connectivity
  • Manage network device security
  • Describe IPv6 basics
  • Troubleshoot VLAN issues, explain how STP works, configure EtherChannel, and understand the idea behind Layer 3 redundancy
  • Troubleshoot IP connectivity
  • Define the characteristics, functions, and components of a WAN Configure and troubleshoot EIGRP in an IPv4 environment, and configure EIGRP for IPv6
  • Configure, verify, and troubleshoot multi-area OSPF
  • Describe SNMP, syslog and NetFlow, and manage Cisco device configurations, IOS images, and licenses
Course Objectives

Planning & Scoping

Explain the importance of planning and key aspects of compliance-based assessments

Information Gathering & Vulnerability Identification

Gather information to prepare for exploitation then perform a vulnerability scan and analyze results.

Attacks & Exploits

Exploit network, wireless, application, and RF-based vulnerabilities, summarize physical security attacks, and perform post-exploitation techniques

Penetration Testing Tools

Conduct information gathering exercises with various tools and analyze output and basic scripts (limited to: Bash, Python, Ruby, PowerShell)

Reporting & Communication 

Utilize report writing and handling best practices explaining recommended mitigation strategies for discovered vulnerabilities

Course Content

Planning And Scoping Penetration Tests

  • Introduction to Penetration Testing Concepts
  • Plan a Pen Test Engagement
  • Scope and Negotiate a Pen Test Engagement
  • Prepare for a Pen Test Engagement

Conducting Passive Reconnaissance

  • Gather Background Information
  • Prepare Background Findings for Next Steps

Performing Non-Technical Tests

  • Perform Social Engineering Tests
  • Perform Physical Security Tests on Facilities

Conducting Active Reconnaissance

  • Scan Networks
  • Enumerate Targets
  • Scan for Vulnerabilities
  • Analyze Basic Scripts

Analyzing Vulnerabilities

  • Analyze Vulnerability Scan Results
  • Leverage Information to Prepare for Exploitation

Penetrating Networks

  • Exploit Network-Based Vulnerabilities
  • Exploit Wireless and RF-Based Vulnerabilities
  • Exploit Specialized Systems

Exploiting Host-Based Vulnerabilities

  • Exploit Windows-Based Vulnerabilities
  • Exploit *nix-Based Vulnerabilities

Testing Applications

  • Exploit Web Application Vulnerabilities
  • Test Source Code and Compiled Apps

Completing Post-Exploit Tasks

  • Use Lateral Movement Techniques
  • Use Persistence Techniques
  • Use Anti-Forensics Techniques

Analyzing And Reporting Pen Test Results

  • Analyze Pen Test Data
  • Develop Recommendations for Mitigation Strategies
  • Write and Handle Reports
  • Conduct Post-Report-Delivery Activities

 

  • CompTIA PenTest+

  • Ask For

About the Certification

CompTIA PenTest+ is for cybersecurity professionals tasked with penetration testing and vulnerability management.

PenTest+ assesses the most up-to-date penetration testing, and vulnerability assessment and management skills necessary to determine the resiliency of the network against attacks. The CompTIA PenTest+ certification exam will verify successful candidates have the knowledge and skills required to:

  • Plan and scope a penetration testing engagement
  • Understand legal and compliance requirements
  • Perform vulnerability scanning and penetration testing using appropriate tools and
  • techniques, and then analyze the results
  • Produce a written report containing proposed remediation techniques, effectively
  • communicate results to the management team, and provide practical recommendations

PenTest+ is compliant with ISO 17024 standards and approved by the US DoD to meet directive 8140/8570.01-M requirements. Regulators and government rely on ANSI accreditation, because it provides confidence and trust in the outputs of an accredited program. Over 2.3 million CompTIA ISO/ANSI-accredited exams have been delivered since January 1, 2011.

 

 

Exam Details

Exam CodePT0-002PT0-001
Launch DateOctober 28, 2021 July 31, 2018
Exam DescriptionThe CompTIA PenTest+ will certify the successful candidate has the knowledge and skills required to plan and scope a penetration testing engagement including vulnerability scanning, understand legal and compliance requirements, analyze results, and produce a written report with remediation techniques.The CompTIA PenTest+ certification verifies that successful candidates have the knowledge and skills required to plan and scope an assessment, understand legal and compliance requirements, perform vulnerability scanning and penetration testing, analyze data, and effectively report and communicate results.
Number of QuestionsMaximum of 85 questionsMaximum of 85 questions
Type of QuestionsPerformance-based and multiple choicePerformance-based and multiple choice
Length of Test165 minutes165 minutes
Passing Score750 (on a scale of 100-900)750 (on a scale of 100-900)
Recommended ExperienceNetwork+, Security+ or equivalent knowledge. Minimum of 3-4 years of hands-on information security or related experience. While there is no required prerequisite, PenTest+ is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus.Network+, Security+ or equivalent knowledge. Minimum of 3-4 years of hands-on information security or related experience. While there is no required prerequisite, PenTest+ is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus.
LanguagesEnglish and JapaneseEnglish and Japanese
RetirementUsually three years after launch April, 2022