CompTIA PenTest+ (PT0-001)

(PT0-001) / ISBN: 9781644590843
This course includes
Lessons
TestPrep
Lab
LiveLab (Add-on)
Share
Try This Course
4.2 Rating 4 Reviews
Are you an instructor?
Request a free evaluation copy

CompTIA PenTest+ (PT0-001)

Gain hands-on experience to pass the PT0-001 exam with the CompTIA PenTest+ PT0-001 course and lab. The lab is a simulator that provides a virtual environment for users to explore and learn. The CompTIA PenTest+ study guide covers the PT0-001 exam objectives and knowledge to exploit network, wireless, application, and RF-based vulnerabilities; summarize physical security attacks and perform post-exploitation techniques, and many more.
Here's what you will get

CompTIA PenTest+ certification ensures that the successful candidate has the knowledge and skills required to plan and scope an assessment, understand legal and compliance requirements, perform vulnerability scanning and penetration testing, analyze data, and effectively report and communicate results. The CompTIA PenTest+ PT0-001 certification explains the importance of planning and key aspects of compliance-based assessments.

Lessons
  • 14+ Lessons
  • 274+ Quizzes
  • 75+ Flashcards
  • 75+ Glossary of terms
TestPrep
  • 80+ Pre Assessment Questions
  • 2+ Full Length Tests
  • 80+ Post Assessment Questions
  • 160+ Practice Test Questions
Lab
  • 54+ Performance lab
  • 55+ Video tutorials
LiveLab (Add-on)
  • 55+ Video tutorials
Video Lessons
  • 192+ Videos
  • 07:26+ Hours
Here's what you will learn
Download Course Outline
  • CompTIA
  • The PenTest+ Exam
  • What Does This Course Cover?
  • CompTIA PenTest+ Certification Exam Objectives
  • What Is Penetration Testing?
  • Reasons for Penetration Testing
  • Who Performs Penetration Tests?
  • The CompTIA Penetration Testing Process
  • The Cyber Kill Chain
  • Tools of the Trade
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Scoping and Planning Engagements
  • Key Legal Concepts for Penetration Tests
  • Understanding Compliance-Based Assessments
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Footprinting and Enumeration
  • Active Reconnaissance and Enumeration
  • Information Gathering and Defenses
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Identifying Vulnerability Management Requirements
  • Configuring and Executing Vulnerability Scans
  • Software Security Testing
  • Developing a Remediation Workflow
  • Overcoming Barriers to Vulnerability Scanning
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Reviewing and Interpreting Scan Reports
  • Validating Scan Results
  • Common Vulnerabilities
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Exploits and Attacks
  • Exploitation Toolkits
  • Exploit Specifics
  • Leveraging Exploits
  • Persistence and Evasion
  • Pivoting
  • Covering Your Tracks
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Conducting Network Exploits
  • Exploiting Windows Services
  • Exploiting Common Services
  • Wireless Exploits
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Physical Facility Penetration Testing
  • Social Engineering
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Exploiting Injection Vulnerabilities
  • Exploiting Authentication Vulnerabilities
  • Exploiting Authorization Vulnerabilities
  • Exploiting Web Application Vulnerabilities
  • Unsecure Coding Practices
  • Application Testing Tools
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Attacking Hosts
  • Remote Access
  • Attacking Virtual Machines and Containers
  • Physical Device Security
  • Attacking Mobile Devices
  • Credential Attacks
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Scripting and Penetration Testing
  • Variables, Arrays, and Substitutions
  • Comparison Operations
  • String Operations
  • Flow Control
  • Input and Output (I/O)
  • Error Handling
  • Summary
  • Exam Essentials
  • Lab Exercises
  • The Importance of Communication
  • Recommending Mitigation Strategies
  • Writing a Penetration Testing Report
  • Wrapping Up the Engagement
  • Summary
  • Exam Essentials
  • Lab Exercises

Hands on Activities (Performance Labs)

  • Studying SOW, MSA, and NDA
  • Examining Penetration Testing Execution Standard (PTES)
  • Examining Open Source Security Testing Methodology Manual
  • Examining NIST SP 800-115 - Technical Guide to Information Security Testing and Assessment
  • Performing Domain Enumeration
  • Performing Zone Transfer Using dig
  • Using ExifTool
  • Using the theHarvester Tool
  • Using Maltego
  • Studying the Communication Plan and the Main Elements of a Pen Test Report
  • Performing Nmap SYN Scan
  • Performing Nmap UDP Scan
  • Using Nmap for Host Enumeration
  • Using Nmap for User Enumeration
  • Using Nmap for Network Share Enumeration
  • Using Nmap for Web Application Enumeration
  • Using Nmap for Network Enumeration
  • Using Zenmap
  • Using nslookup for Passive Reconnaissance
  • Examining the OWASP Web Testing Methodologies and Testing Guide
  • Using Nikto
  • Studying CVSS Exercises with the CVSS Calculator
  • Using searchsploit
  • Using OpenVAS
  • Using meterpreter
  • Exploiting SMB
  • Using the Metasploit RDP Post-Exploitation Module
  • Using the SET Tool
  • Performing ARP Spoofing
  • Performing the Man-in-the-Middle Attack
  • Using the EternalBlue Exploit in Metasploit
  • Exploiting SNMP
  • Exploiting SMTP
  • Exploiting SQL Injection Vulnerabilities
  • Exploiting Blind SQL Injection Vulnerabilities
  • Exploiting Command Injection Vulnerabilities
  • Understanding Credential based Brute-force Attack
  • Performing Session Hijacking
  • Exploiting Local File Inclusion Vulnerabilities
  • Exploiting Remote File Inclusion Vulnerabilities
  • Exploiting the Stored (Persistent) XSS Attack
  • Exploiting the DOM-Based XSS Attack
  • Exploiting the Reflected XSS Attack
  • Exploiting the Cross-site Request Forgery (CSRF or XSRF) Attacks
  • Using OWASP ZAP
  • Understanding the Pass-the-hash Attack
  • Understanding SUID or SGID and Unix Program
  • Understanding Local Privilege Escalation
  • Exploiting SAM Database
  • Creating Reverse and Bind Shells using Netcat
  • Using Apktool to Decode and Analyze apk File
  • Using Bash for Penetration Testing
  • Using Python for Penetration Testing
  • Using PowerShell for Penetration Testing

Hands on Activities (Live Labs)

  • Studying SOW, MSA, and NDA
  • Examining Penetration Testing Execution Standard (PTES)
  • Examining Open Source Security Testing Methodology Manual
  • Examining NIST SP 800-115 - Technical Guide to Information Security Testing and Assessment
  • Performing Domain Enumeration
  • Performing Zone Transfer Using dig
  • Using ExifTool
  • Using the theHarvester Tool
  • Using Maltego
  • Studying the Communication Plan and the Main Elements of a Pen Test Report
  • Performing Nmap SYN Scan
  • Performing Nmap UDP Scan
  • Using Nmap for Host Enumeration
  • Using Nmap for User Enumeration
  • Using Nmap for Network Share Enumeration
  • Using Nmap for Web Application Enumeration
  • Using Nmap for Network Enumeration
  • Using Zenmap
  • Using nslookup for Passive Reconnaissance
  • Examining the OWASP Web Testing Methodologies and Testing Guide
  • Using Nikto
  • Studying CVSS Exercises with the CVSS Calculator
  • Using searchsploit
  • Using OpenVAS
  • Using meterpreter
  • Exploiting SMB
  • Using the Metasploit RDP Post-Exploitation Module
  • Using the SET Tool
  • Performing ARP Spoofing
  • Performing the Man-in-the-Middle Attack
  • Using the EternalBlue Exploit in Metasploit
  • Exploiting SNMP
  • Exploiting SMTP
  • Exploiting SQL Injection Vulnerabilities
  • Exploiting Blind SQL Injection Vulnerabilities
  • Exploiting Command Injection Vulnerabilities
  • Understanding Credential based Brute-force Attack
  • Performing Session Hijacking
  • Exploiting Local File Inclusion Vulnerabilities
  • Exploiting Remote File Inclusion Vulnerabilities
  • Exploiting the Stored (Persistent) XSS Attack
  • Exploiting the DOM-Based XSS Attack
  • Exploiting the Reflected XSS Attack
  • Exploiting the Cross-site Request Forgery (CSRF or XSRF) Attacks
  • Using OWASP ZAP
  • Understanding the Pass-the-hash Attack
  • Understanding SUID or SGID and Unix Program
  • Understanding Local Privilege Escalation
  • Exploiting SAM Database
  • Creating Reverse and Bind Shells using Netcat
  • Using Apktool to Decode and Analyze apk File
  • Using Bash for Penetration Testing
  • Using Python for Penetration Testing
  • Using PowerShell for Penetration Testing
Exam FAQs
What are the prerequisites for this exam? Network+, Security+ or equivalent knowledge. Minimum of 3-4 years of hands-on information security or related experience. While there is no required prerequisite, PenTest+ is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus.
What is the exam registration fee? USD 370
Where do I take the exam? Pearson VUE
What is the format of the exam? Performance-based and multiple choice
How many questions are asked in the exam? The exam contains 85 questions.
What is the duration of the exam? 165 minutes
What is the passing score? 750

(on a scale of 100-900)
What is the exam's retake policy?

In the event that you fail your first attempt at passing the PenTest+ examination, CompTIA's retake policies are:

  1. If a candidate has passed an exam, he/she cannot take it again without prior consent from CompTIA.
  2. Candidates must pay the exam price each time they attempt the exam. CompTIA does not offer free re-tests or discounts on retakes.
  3. A test result found to be in violation of the retake policy will not be processed, which will result in no credit awarded for the test taken. Repeat violators will be banned from participation in the CompTIA Certification Program.
  4. CompTIA does not require a waiting period between the first and second attempt to pass such examination. However, if you need a third or subsequent attempt to pass the examination, you shall be required to wait for a period of at least 14 calendar days from the date of your last attempt before you can retake the exam.
What is the validity of the certification? CompTIA PenTest+ certification expires after three years from the date of issue, after which the certification holder will need to renew their certification via CompTIA's Continuing Education Program.
Where can I find more information about this exam? Know more about the PT0-001
What are the career opportunities after passing this exam?
  • Penetration Tester
  • Vulnerability Tester
  • Network Security Operations
  • Application Security Vulnerability
  • Vulnerability Assessment Analyst
Customer Testimonials
Islam Uddin
Overall the course helped a lot to get a complete understanding on the subject which can be applied on the real-time job.
Naman Jain
The uCertify CompTIA Pen Test course from uCertify is simply one of the best I've seen. While most similar products include several question formats, uCertify has more than 50! Because of this, it is uniquely able to address workforce training needs. It is also ADA compliant, which is one of the best part of the company. The robust variety of question types addresses individual learner needs while also introducing new opportunities to assess areas that are typically very difficult to address in an online environment.
Festus Odia
The uCertify online learning platform is an excellent online platform for the working professionals to learn new subjects and acquire new skills, while also getting certified.

Show more

×