CompTIA PenTest+ PT0-002 Cert Guide, 2nd Edition

CompTIA PenTest+ PT0-002 Cert Guide, 2nd Edition

by Omar Santos
Released December 2021
Publisher(s): Pearson IT Certification
ISBN: 9780137566204

Read it now on the O’Reilly learning platform with a 10-day free trial.

O’Reilly members get unlimited access to books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Book description

This is the eBook edition of the CompTIA PenTest+ PT0-002 Cert Guide. This eBook does not include access to the Pearson Test Prep practice exams that comes with the print edition.

Learn, prepare, and practice for CompTIA PenTest+ PT0-002 exam success with this CompTIA PenTest+ PT0-002 Cert Guide from Pearson IT Certification, a leader in IT Certification learning.

CompTIA PenTest+ PT0-002 Cert Guide presents you with an organized test preparation routine through the use of proven series elements and techniques. Do I Know This Already? quizzes open each chapter and allow you to decide how much time you need to spend on each section. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks help you drill on key concepts you must know thoroughly.

CompTIA PenTest+ PT0-002 Cert Guide focuses specifically on the objectives for the CompTIA PenTest+ PT0-002 exam. Leading security expert Omar Santos shares preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics.

This complete study package includes

  • A test-preparation routine proven to help you pass the exams

  • Do I Know This Already? quizzes, which allow you to decide how much time you need to spend on each section

  • Chapter-ending exercises, which help you drill on key concepts you must know thoroughly

  • An online interactive Flash Cards application to help you drill on Key Terms by chapter

  • A final preparation chapter, which guides you through tools and resources to help you craft your review and test-taking strategies

  • Study plan suggestions and templates to help you organize and optimize your study time

Well regarded for its level of detail, assessment features, and challenging review questions and exercises, this official study guide helps you master the concepts and techniques that ensure your exam success.

This study guide helps you master all the topics on the CompTIA PenTest+ PT0-002 exam, including

  • Planning and Scoping a Penetration Testing Assessment

  • Information Gathering and Vulnerability Identification

  • Social Engineering Attacks and Physical Security Vulnerabilities

  • Exploiting Wired and Wireless Networks

  • Exploiting Application-Based Vulnerabilities

  • Cloud, Mobile, and IoT Security

  • Performing Post-Exploitation Techniques

  • Reporting and Communication

  • Tools and Code Analysis

Table of contents

  1. Cover Page
  2. About This eBook
  3. Title Page
  4. Copyright Page
  5. Pearson’s Commitment to Diversity, Equity, and Inclusion
  6. Credits
  7. Contents at a Glance
  8. Contents
  9. About the Author
  10. Dedication
  11. Acknowledgments
  12. About the Technical Reviewer
  13. We Want to Hear from You!
  14. Reader Services
  15. Introduction
    1. The Goals of the CompTIA PenTest+ Certification
    2. The Exam Objectives (Domains)
    3. Steps to Earning the PenTest+ Certification
    4. Facts About the PenTest+ Exam
    5. About the CompTIA PenTest+ PT0-002 Cert Guide
    6. Companion Website
    7. Pearson Test Prep Practice Test Software
  16. Chapter 1 Introduction to Ethical Hacking and Penetration Testing
    1. “Do I Know This Already?” Quiz
    2. Foundation Topics
    3. Understanding Ethical Hacking and Penetration Testing
    4. Exploring Penetration Testing Methodologies
    5. Building Your Own Lab
    6. Exam Preparation Tasks
    7. Review All Key Topics
    8. Define Key Terms
    9. Q&A
  17. Chapter 2 Planning and Scoping a Penetration Testing Assessment
    1. “Do I Know This Already?” Quiz
    2. Foundation Topics
    3. Comparing and Contrasting Governance, Risk, and Compliance Concepts
    4. Explaining the Importance of Scoping and Organizational or Customer Requirements
    5. Demonstrating an Ethical Hacking Mindset by Maintaining Professionalism and Integrity
    6. Exam Preparation Tasks
    7. Review All Key Topics
    8. Define Key Terms
    9. Q&A
  18. Chapter 3 Information Gathering and Vulnerability Scanning
    1. “Do I Know This Already?” Quiz
    2. Foundation Topics
    3. Performing Passive Reconnaissance
    4. Performing Active Reconnaissance
    5. Understanding the Art of Performing Vulnerability Scans
    6. Understanding How to Analyze Vulnerability Scan Results
    7. Exam Preparation Tasks
    8. Review All Key Topics
    9. Define Key Terms
    10. Q&A
  19. Chapter 4 Social Engineering Attacks
    1. “Do I Know This Already?” Quiz
    2. Foundation Topics
    3. Pretexting for an Approach and Impersonation
    4. Social Engineering Attacks
    5. Physical Attacks
    6. Social Engineering Tools
    7. Methods of Influence
    8. Exam Preparation Tasks
    9. Review All Key Topics
    10. Define Key Terms
    11. Q&A
  20. Chapter 5 Exploiting Wired and Wireless Networks
    1. “Do I Know This Already?” Quiz
    2. Foundation Topics
    3. Exploiting Network-Based Vulnerabilities
    4. Exploiting Wireless Vulnerabilities
    5. Exam Preparation Tasks
    6. Review All Key Topics
    7. Define Key Terms
    8. Q&A
  21. Chapter 6 Exploiting Application-Based Vulnerabilities
    1. “Do I Know This Already?” Quiz
    2. Foundation Topics
    3. Overview of Web Application-Based Attacks for Security Professionals and the OWASP Top 10
    4. How to Build Your Own Web Application Lab
    5. Understanding Business Logic Flaws
    6. Understanding Injection-Based Vulnerabilities
    7. Exploiting Authentication-Based Vulnerabilities
    8. Exploiting Authorization-Based Vulnerabilities
    9. Understanding Cross-Site Scripting (XSS) Vulnerabilities
    10. Understanding Cross-Site Request Forgery (CSRF/XSRF) and Server-Side Request Forgery Attacks
    11. Understanding Clickjacking
    12. Exploiting Security Misconfigurations
    13. Exploiting File Inclusion Vulnerabilities
    14. Exploiting Insecure Code Practices
    15. Exam Preparation Tasks
    16. Review All Key Topics
    17. Define Key Terms
    18. Q&A
  22. Chapter 7 Cloud, Mobile, and IoT Security
    1. “Do I Know This Already?” Quiz
    2. Foundation Topics
    3. Researching Attack Vectors and Performing Attacks on Cloud Technologies
    4. Explaining Common Attacks and Vulnerabilities Against Specialized Systems
    5. Exam Preparation Tasks
    6. Review All Key Topics
    7. Define Key Terms
    8. Q&A
  23. Chapter 8 Performing Post-Exploitation Techniques
    1. “Do I Know This Already?” Quiz
    2. Foundation Topics
    3. Creating a Foothold and Maintaining Persistence After Compromising a System
    4. Understanding How to Perform Lateral Movement, Detection Avoidance, and Enumeration
    5. Exam Preparation Tasks
    6. Review All Key Topics
    7. Define Key Terms
    8. Q&A
  24. Chapter 9 Reporting and Communication
    1. “Do I Know This Already?” Quiz
    2. Foundation Topics
    3. Comparing and Contrasting Important Components of Written Reports
    4. Analyzing the Findings and Recommending the Appropriate Remediation Within a Report
    5. Explaining the Importance of Communication During the Penetration Testing Process
    6. Explaining Post-Report Delivery Activities
    7. Exam Preparation Tasks
    8. Review All Key Topics
    9. Define Key Terms
    10. Q&A
  25. Chapter 10 Tools and Code Analysis
    1. “Do I Know This Already?” Quiz
    2. Foundation Topics
    3. Understanding the Basic Concepts of Scripting and Software Development
    4. Understanding the Different Use Cases of Penetration Testing Tools and Analyzing Exploit Code
    5. Exam Preparation Tasks
    6. Review All Key Topics
    7. Define Key Terms
    8. Q&A
  26. Chapter 11 Final Preparation
    1. Tools for Final Preparation
    2. Suggested Plan for Final Review/Study
    3. Summary
  27. Glossary of Key Terms
  28. Appendix A Answers to the “Do I Know This Already?” Quizzes and Q&A Sections
  29. Appendix B CompTIA® PenTest+ PT0-002 Cert Guide Exam Updates
  30. Index
  31. Appendix C Study Planner
  32. Where are the companion content files? - Register
  33. Inside Front Cover
  34. Inside Back Cover
  35. Code Snippets

Product information

  • Title: CompTIA PenTest+ PT0-002 Cert Guide, 2nd Edition
  • Author(s): Omar Santos
  • Release date: December 2021
  • Publisher(s): Pearson IT Certification
  • ISBN: 9780137566204