• Planning and Scoping
• Information Gathering and Vulnerability Scanning
• Attacks and Exploits
• Reporting and Communication
• Tools and Code Analysis

Lesson 1: Planning and Scoping

• Planning and Scoping Compare and contrast governance, risk, and compliance concept
• Explain the importance of scoping and organizational/customer requirements
• Given a scenario, demonstrate an ethical hacking mindset by maintaining professionalism and integrity

Lesson 2: Information Gathering and Vulnerability Scanning

• Given a scenario, perform passive reconnaissance
• Given a scenario, perform active reconnaissance
• Given a scenario, analyse the results of a reconnaissance exercise
• Given a scenario, perform vulnerability scanning

Lesson 3: Attacks and Exploits

• Given a scenario, research attack vectors and perform network attacks
• Given a scenario, research attack vectors and perform wireless attacks
• Given a scenario, research attack vectors and perform application-based attacks
• Given a scenario, research attack vectors and perform attacks on cloud technologies
• Explain common attacks and vulnerabilities against specialised systems
• Given a scenario, perform a social engineering or physical attack
• Given a scenario, perform post-exploitation techniques

Lesson 4: Reporting and Communication

• Compare and contrast important components of written reports
• Given a scenario, analyse the findings and recommend the appropriate remediation within a report
• Explain the importance of communication during the penetration testing process
• Explain post-report delivery activities

Lesson 5: Tools and Code Analysis

• Tools and Code Analysis
• Given a scenario, analyse a script or code sample for use in a penetration test
• Explain use cases of the following tools during the phases of a penetration test

This course is designed for IT professionals who want to develop penetration testing skills to enable them to identify information system vulnerabilities and effective remediation techniques for those vulnerabilities. In particular, students who also need practical recommendations for action to properly protect information systems and their contents. This course is also designed for individuals who are preparing to take the CompTIA PenTest+ certification exam PT0-001, or who plan to use the PenTest+ as the foundation for more advanced security certifications or career roles.

To ensure your success in this course, you should have:

• Intermediate knowledge of information security concepts, including but not limited to identity and access management (IAM), cryptographic concepts and implementations, computer networking concepts and implementations, and common security technologies.
• Practical experience in securing various computing environments, including small to medium businesses, as well as enterprise environments.

You can obtain this level of skills and knowledge by taking Course

Individuals seeking the CompTIA PenTest+ certification should also have three to four years of hands-on experience performing penetration tests, vulnerability assessments, and vulnerability management.