Learning path
CompTIA Pentest+
CompTIA PenTest+ is for cybersecurity professionals tasked with penetration testing and vulnerability management. Use this pathway as supporting content and pre-preparation for the CompTIA certification exam.
easy
Learn the practical skills and prepare to ace the Pentest+ exam.
- Hands-on exercises aligning to PenTest+ exam objectives
- Practical exam preparation to help you with the Performance Based Questions
Complete this learning path and earn a certificate of completion.
Introduction
This PenTest+ pathway allows individuals to practice the majority of practical skills required for the CompTIA PenTest+ exam. In this you will learn about
- Industry standard penetration testing tools
- Identifying and exploiting different network services
- Exploiting web applications through today’s most common vulnerabilities
- Understanding Windows active directory and attacking Kerberos
- Post exploitation techniques (with Powerview, Bloodhound and Mimikatz)
CompTIA PenTest+ is for cybersecurity professionals tasked with penetration testing and vulnerability management.
Section 1
Planning and Scoping
Pentesting Fundamentals
Red Team Engagements
Governance & RegulationSection 2
Tools and Code Analysis
Metasploit: Introduction 
Wireshark: The Basics
Burp Suite: The Basics
Hydra
Python Basics
Python for PentestersSection 3
Information Gathering and Vulnerability Scanning
Passive Reconnaissance
Active Reconnaissance
Nmap Live Host Discovery
Nmap Basic Port Scans
Nmap Advanced Port ScansSection 4
Attacks and Exploits
HTTP in Detail
OWASP Juice Shop
Phishing
Windows Privilege Escalation
Windows Local Persistence
Active Directory Basics
Breaching Active Directory
Linux Privilege Escalation
Lateral Movement and Pivoting
Persisting Active Directory
Credentials HarvestingSection 5
OWASP Top 10 (2025)
OWASP Top 10 2025: IAAA Failures
OWASP Top 10 2025: Application Design Flaws
OWASP Top 10 2025: Insecure Data Handling