The PenTest+ exam has been on the scene as long as the CySA+ exam and has quickly become a fan favorite. There hasn't been as much clamoring for this certification in the workplace, but the topics and domains are helpful for those in the assessment space. This isn't to downplay PenTest+, however, it is still globally recognized, is in various countries, and is vendor neutral.

Here's a great primer from Infosec:

The difficulty is in the intermediate level. See below for PenTest+ PT0-001 exam details.

Exam Structure

  • Number of Questions: 75 questions (85 max)
  • Duration: 165 minute duration, not including survey time, about 2 minutes per question
  • Score Range: 100-900
  • Passing Score: 750 (roughly 83%, not including experimental questions)
  • Types of Questions:
    • Multiple Choice – can have more than one answer
    • Performance Based – perform the requested action

Exam Domains

  1. Planning and Scoping 15%
  2. Information Gathering and Vulnerability Identification 22%
  3. Attacks and Exploits 30%
  4. Penetration Testing Tools 17%
  5. Reporting and Communication 16%

Exam History

  • PT0-002: October 2021, Current
  • PT0-001: July 31, 2018, retiring April 2022

Study Notes

A current overview of CompTIA PenTest+ certification exam PT0-001. Also, here's the Home Lab Setup guide based on the study guide.

  1. Planning and Scoping
  2. Information Gathering and Vulnerability Identification
  3. Attacks and Exploits
  4. Penetration Testing Tools
  5. Reporting and Communication

After the Exam

Likely Jobs

  • Penetration Tester
  • Vulnerability Tester
  • Security Analyst (II)
  • Vulnerability Assessment Analyst
  • Network Security Operations
  • Application Security Vulnerability

Conclusion

The NICE Cybersecurity Workforce Framework reveals that CompTIA PenTest+ covers two job roles in addition to penetration testing that is in high demand — vulnerability management and vulnerability assessment. If you look at the job boards (Indeed.com, LinkedIn Jobs, etc.), there are quite a few more vulnerability management and assessment jobs in the U.S. than penetration testing jobs.

Learn the material in this certification to learn everything all the way from pre-project planning and scoping to post-project reporting and communication. The cybersecurity strategy portion is invaluable. Any up and coming cyber pro will quickly realize there's more to it than just learning hard cybersecurity skills.

Pin It on Pinterest