CompTIA PenTest+ 渗透测试专家认证
CompTIA PenTest+符合ISO 17024标准。是CompTIA推出的针对渗透测试方面的职业认证,知识框架涵盖渗透测试的全过程,重视理论和实践操作,以被业界认可并接受。通过认证的人员具备完善的渗透知识体系和全面的工具使用能力。
持证好处
- 1.制定渗透计划和识别渗透范围:解释计划的重要性和基于合规性的评估改进网络安全的关键领域
- 2.信息收集和脆弱性识别:收集可以利用的信息,然后执行漏洞扫描并分析结果。
- 3.攻击和利用:利用网络、无线、应用和基于RF的漏洞,总结可能的物理安全攻击并采取预防措施
- 4.掌握渗透测试工具的使用:使用各种工具进行信息收集的练习,分析输出和基本脚本的编写能力(仅限于:Bash、Python、Ruby、PowerShell)
- 5.报告与沟通:利用报告编写和处理最佳实践,解释发现漏洞的建议缓解策略
考试详情
考试代码:PT0-001
题目数量:最多85题
题目类型:实践题和多选题
考试时间:165 minutes
及格分数:750 (on a scale of 100-900)
语言:English
价格:$349 USD
考点分布
- 15%: Planning and Scoping
- 22%: Information Gathering and Vulnerability Identification
- 30%: Attacks and Exploits
- 17%: Penetration Testing Tools
- 16%: Reporting and Communication
考试培训
Lesson 1:Introduction to Penetration Testing Concepts
Plan a Pen Test Engagement
Scope and Negotiate a Pen Test Engagement
Prepare for a Pen Test Engagement
Lesson 2:Conducting Passive Reconnaissance
Gather Background Information
Prepare Background Findings for Next Steps
Lesson 3:Performing Non-Technical Tests
Perform Social Engineering Tests
Perform Physical Security Tests on Facilities
Lesson 4:Conducting Active Reconnaissance
Scan Networks
Enumerate Targets
Scan for Vulnerabilities
Analyze Basic Scripts
Lesson 5:Analyzing Vulnerabilities
Analyze Vulnerability Scan Results
Leverage Information to Prepare for Exploitation
Lesson 6:Penetrating Networks
Exploit Network-Based Vulnerabilities
Exploit Wireless and RF-Based Vulnerabilities
Exploit Specialized Systems
参考信息:
报名及更多信息, 欢迎微信联系:
