CompTIA Penetration Testing


Request for price


Length: 5 day (40 hours)

 

As organizations scramble to protect themselves and their customers against privacy or security breaches, the ability to conduct penetration testing is an emerging skill set that is becoming ever more valuable to the organizations seeking protection, and ever more lucrative for those who possess these skills. In this course, you will be introduced to general concepts and methodologies related to pen testing, and you will work your way through a simulated pen test for a fictitious company. This course will assist you if you are pursuing the CompTIA PenTest+ certification, as tested in exam PT0-002. PenTest+ is compliant with ISO 17024 standards and approved by the US DoD to meet directive 8140/8570.01-M requirements.

This course is designed for those whose job role could be Penetration Tester, Security Consultant, Cloud Penetration Tester, Cloud Security Specialist, Network & Security Specialist, Web App Penetration Tester, Information Security Engineer, and Security Analyst.

3–4 years of hands-on experience performing penetration tests, vulnerability assessments, and code analysis
Network+, Security, or equivalent certifications/knowledge

Start with the customer – find out what they want and give it to them.

Course objectivesCourse outlines

Course objectives

After completing this course, students will be able to:

  • Plan and scope a penetration testing engagement 
  • Understand legal and compliance requirements 
  • Perform vulnerability scanning and penetration testing using appropriate tools and techniques, and then analyze the results 
  • Produce a written report containing proposed remediation techniques, effectively communicate results to the management team, and provide practical recommendations

Course outlines

  • Scoping Organizational/Customer Requirements
  • Defining the Rules of Engagement
  • Footprinting and Gathering Intelligence
  • Evaluating Human and Physical Vulnerabilities
  • Preparing the Vulnerability Scan
  • Scanning Logical Vulnerabilities
  • Analyzing Scanning Results
  • Avoiding Detection and Covering Tracks
  • Exploiting the LAN and Cloud
  • Testing Wireless Networks
  • Targeting Mobile Devices
  • Attacking Specialized Systems
  • Web Application-Based Attacks
  • Performing System Hacking
  • Scripting and Software Development
  • Leveraging the Attack- Pivot and Penetrate
  • Communicating During the PenTesting Process
  • Summarizing Report Components
  • Recommending Remediation
  • Performing Post-Report Delivery Activities


Download outlines