book

CompTIA PenTest+ PT0-002 Cert Guide, 2nd Edition

by Omar Santos

December 2021

Intermediate to advanced

624 pages

16h 53m

English

Pearson IT Certification

Read now

Unlock full access

The Goals of the CompTIA PenTest+ CertificationThe Exam Objectives (Domains)Steps to Earning the PenTest+ CertificationFacts About the PenTest+ ExamAbout the CompTIA PenTest+ PT0-002 Cert GuideCompanion WebsitePearson Test Prep Practice Test Software
“Do I Know This Already?” QuizFoundation TopicsUnderstanding Ethical Hacking and Penetration TestingExploring Penetration Testing MethodologiesBuilding Your Own LabExam Preparation TasksReview All Key TopicsDefine Key TermsQ&A
“Do I Know This Already?” QuizFoundation TopicsComparing and Contrasting Governance, Risk, and Compliance ConceptsExplaining the Importance of Scoping and Organizational or Customer RequirementsDemonstrating an Ethical Hacking Mindset by Maintaining Professionalism and IntegrityExam Preparation TasksReview All Key TopicsDefine Key TermsQ&A
“Do I Know This Already?” QuizFoundation TopicsPerforming Passive ReconnaissancePerforming Active ReconnaissanceUnderstanding the Art of Performing Vulnerability ScansUnderstanding How to Analyze Vulnerability Scan ResultsExam Preparation TasksReview All Key TopicsDefine Key TermsQ&A
“Do I Know This Already?” QuizFoundation TopicsPretexting for an Approach and ImpersonationSocial Engineering AttacksPhysical AttacksSocial Engineering ToolsMethods of InfluenceExam Preparation TasksReview All Key TopicsDefine Key TermsQ&A
“Do I Know This Already?” QuizFoundation TopicsExploiting Network-Based VulnerabilitiesExploiting Wireless VulnerabilitiesExam Preparation TasksReview All Key TopicsDefine Key TermsQ&A
“Do I Know This Already?” QuizFoundation TopicsOverview of Web Application-Based Attacks for Security Professionals and the OWASP Top 10How to Build Your Own Web Application LabUnderstanding Business Logic FlawsUnderstanding Injection-Based VulnerabilitiesExploiting Authentication-Based VulnerabilitiesExploiting Authorization-Based VulnerabilitiesUnderstanding Cross-Site Scripting (XSS) VulnerabilitiesUnderstanding Cross-Site Request Forgery (CSRF/XSRF) and Server-Side Request Forgery AttacksUnderstanding ClickjackingExploiting Security MisconfigurationsExploiting File Inclusion VulnerabilitiesExploiting Insecure Code PracticesExam Preparation TasksReview All Key TopicsDefine Key TermsQ&A
“Do I Know This Already?” QuizFoundation TopicsResearching Attack Vectors and Performing Attacks on Cloud TechnologiesExplaining Common Attacks and Vulnerabilities Against Specialized SystemsExam Preparation TasksReview All Key TopicsDefine Key TermsQ&A
“Do I Know This Already?” QuizFoundation TopicsCreating a Foothold and Maintaining Persistence After Compromising a SystemUnderstanding How to Perform Lateral Movement, Detection Avoidance, and EnumerationExam Preparation TasksReview All Key TopicsDefine Key TermsQ&A
“Do I Know This Already?” QuizFoundation TopicsComparing and Contrasting Important Components of Written ReportsAnalyzing the Findings and Recommending the Appropriate Remediation Within a ReportExplaining the Importance of Communication During the Penetration Testing ProcessExplaining Post-Report Delivery ActivitiesExam Preparation TasksReview All Key TopicsDefine Key TermsQ&A
“Do I Know This Already?” QuizFoundation TopicsUnderstanding the Basic Concepts of Scripting and Software DevelopmentUnderstanding the Different Use Cases of Penetration Testing Tools and Analyzing Exploit CodeExam Preparation TasksReview All Key TopicsDefine Key TermsQ&A
Tools for Final PreparationSuggested Plan for Final Review/StudySummary