CompTIA PenTest+ (PT0-003) Prep Pack

CompTIA PenTest+ (PT0-003) Prep Pack

Did you know the Bureau of Labor Statistics is projecting 32% growth for information security analyst roles through 2032?  This includes Penetration Testers.  The CompTIA PenTest+ (PT0-003) certification is a pivotal credential for professionals aiming to specialize in penetration testing and vulnerability management. Professionals holding the PenTest+ certification earn an average salary of $110,540, reflecting the high demand and value of this expertise in the cybersecurity field.

What’s Included
  • The Course- 30+ hours of expert-led video training, 12 month access
  • Study Guide- Official CompTIA PenTest+ (PT0-003) study guide
  • eBook- Official CompTIA eBook
  • Labs- Hands-on labs to simulate real-world penetration testing scenarios
  • Practice Exams- 700+ questions
Who This Course Is For
  • IT Professionals aspiring to become penetration testers
  • Cybersecurity Analysts and Consultants seeking advanced skills
  • Network Administrators responsible for securing systems
  • Ethical Hackers preparing for the CompTIA PenTest+ certification
  • Security Engineers and Incident Responders expanding their expertise
What You’ll Learn

This course thoroughly prepares you for the CompTIA PenTest+ (PT0-003) exam by covering all five key domains:

  • Planning and Scoping 
  • Information Gathering and Vulnerability Identification
  • Attacks and Exploits 
  • Reporting and Communication 
  • Tools and Code Analysis 
Why Choose Dion Training?
  • Learn from seasoned cybersecurity professionals
  • 60-Day Pass Guarantee – Pass your exam or we pay for your retake
  • Hands-on labs to reinforce practical skills
  • CompTIA Platinum Partner
Course $399USD
4.6+ Review Rating
2 Million+ Served
Community Support
50+ Years Experience

Modules

1 -Introduction
  • Introduction12m:23s
  • Download your free study guide
  • Exam Tips4m:14s
  • How to Use the Lab Environment5m:27s
  • Labs: Exploring the PenTest+ Lab Environment
  • 100% Pass Guarantee3m:49s
  • Checkpoint: Introduction
2 -PenTesting Overview
  • PenTesting Overview2m:54s
  • Planning the Engagement4m:23s
  • Information Gathering4m:2s
  • Attacks and Exploits3m:29s
  • Post-Exploitation3m:4s
  • Reporting3m:47s
  • Overview of a PenTest9m:18s
  • Checkpoint: PenTesting Overview
3 -Pre-Engagement Activities
  • Pre-Engagement Activities3m:20s
  • Regulations and Standards6m:24s
  • Types of Assessments4m:32s
  • Types of Agreements4m:17s
  • Legal and Ethical Considerations4m:31s
  • Rules of Engagement4m:48s
  • Target Selection4m:54s
  • Shared Responsibility Model4m:23s
  • Preparing to PenTest a Cloud Provider4m:13s
  • Checkpoint: Pre-Engagement Activities
4 -Frameworks
  • Frameworks3m:43s
  • MITRE ATT&CK4m:54s
  • OWASP4m:55s
  • MASVS4m:14s
  • PTES5m:22s
  • CREST3m:54s
  • OSSTMM3m:8s
  • STRIDE5m:41s
  • Purdue Model3m:55s
  • OCTAVE6m:53s
  • DREAD5m:9s
  • Using the MITRE ATT&CK Framework4m:33s
  • Checkpoint: Frameworks
5 -Information Gathering
  • Information Gathering3m:9s
  • Passive Reconnaissance3m:30s
  • Network Sniffing5m:10s
  • Active Reconnaissance3m:47s
  • Port and Protocol Scanning5m:51s
  • HTML Scraping and Cached Pages2m:59s
  • Banner Grabbing5m:2s
  • Conducting Banner Grabbing3m:45s
  • Checkpoint: Information Gathering
6 -Open-Source Intelligence (OSINT)
  • Open-Source Intelligence (OSINT)2m:48s
  • Social Media and Job Boards4m:45s
  • Information Disclosures4m:8s
  • Cryptographic Flaws6m:31s
  • DNS Lookups7m:40s
  • Certificate Transparency Logs4m:50s
  • Search Engine Analysis4m:27s
  • Conducting OSINT10m:35s
  • Checkpoint: Open-Source Intelligence (OSINT)
7 -Scanning and Enumeration
  • Scanning and Enumeration3m:56s
  • OS and Service Discovery14m:58s
  • Enumerating Protocols4m:52s
  • Enumerating DNS3m:56s
  • Enumerating Directories5m:1s
  • Enumerating Hosts6m:44s
  • Enumerating Users2m:45s
  • Enumerating Email3m:17s
  • Enumerating Permissions4m:57s
  • Enumerating Wireless Devices4m:27s
  • Enumerating Secrets4m:53s
  • Enumerating the Web4m:38s
  • Attack Path Mapping3m:22s
  • Checkpoint: Scanning and Enumeration
8 -Recon and Enumeration Tools
  • Reconnaissance and Enumeration Tools3m:36s
  • Wayback Machine2m:46s
  • theHarvester and Hunter.io4m:54s
  • OSINT Tools4m:5s
  • Whois and recon-ng20m:32s
  • nslookup and dig6m:58s
  • DNSdumpster and Amass6m:30s
  • Shodan and Censys.io5m:42s
  • tcpdump5m:31s
  • Wireshark5m:42s
  • Wireless Analysis Tools5m:12s
  • Checkpoint: Recon and Enumeration Tools
9 -Nmap and NSE
  • Nmap and NSE2m:34s
  • Nmap Discovery Scans7m:54s
  • Nmap Port Scans9m:13s
  • Nmap Fingerprinting4m:13s
  • Using Nmap11m:31s
  • Nmap Scripting Engine7m:0s
  • Checkpoint: Nmap and NSE
10 -Scripting Basics
  • Scripting Basics2m:11s
  • Shells and Programming Languages9m:48s
  • Variables7m:52s
  • Loops5m:20s
  • Logic Control4m:33s
  • Data Structures12m:37s
  • Object Oriented Programming6m:58s
  • Checkpoint: Scripting Basics
11 -Modifying Scripts
  • Modifying Scripts2m:55s
  • Bash Fundamentals21m:16s
  • Understanding a Bash Script4m:31s
  • Modifying a Bash Script8m:44s
  • PowerShell Fundamentals15m:41s
  • Understanding a PowerShell Script3m:20s
  • Modifying a PowerShell Script7m:42s
  • Python Fundamentals20m:27s
  • Understanding a Python Script3m:35s
  • Modifying a Python Script5m:33s
  • Checkpoint: Modifying Scripts
12 -Analyzing Scans
  • Analyzing Scans3m:11s
  • Positive and Negative Results4m:12s
  • Validating Scan Results3m:56s
  • Using CVEs and CVSS6m:16s
  • Exploit Prediction Scoring System3m:44s
  • Target Prioritization3m:50s
  • Common Target Criteria4m:3s
  • Scripting for Result Validation3m:1s
  • Scan Validations3m:38s
  • Capability Selection4m:30s
  • Documenting the Attack6m:12s
  • Other Attack Considerations4m:25s
  • Checkpoint: Analyzing Scans
13 -Discovering Vulnerabilities
  • Discovering Vulnerabilities2m:14s
  • Application Scanning4m:55s
  • Software Analysis5m:54s
  • Host-Based Scanning4m:25s
  • Network Scanning5m:3s
  • Mobile Scanning3m:17s
  • Container Scanning5m:11s
  • Scanning IaC5m:34s
  • ICS Vulnerability Discovery5m:21s
  • Wireless Scans4m:56s
  • Static Code Analysis (SonarQube)5m:49s
  • Checkpoint: Discovering Vulnerabilities
14 -Vulnerability Discovery Tools
  • Vulnerability Discovery Tools2m:12s
  • Nikto5m:16s
  • Greenbone/OpenVAS13m:32s
  • Trivy3m:44s
  • BloodHound6m:6s
  • PowerSploit1m:30s
  • Grype3m:13s
  • Kube-Hunter3m:10s
  • TruffleHog3m:25s
  • Checkpoint: Vulnerability Discovery Tools
15 -Social Engineering Attacks
  • Social Engineering Attacks3m:15s
  • Methods of Influence11m:2s
  • Phishing Campaigns4m:35s
  • Using the Social Engineering Toolkit (SET)13m:38s
  • Gophish6m:12s
  • Impersonation4m:17s
  • Surveillance Techniques2m:45s
  • Watering Hole3m:2s
  • Evilginx5m:35s
  • Tailgating and Piggybacking3m:40s
  • Browser Exploitation Framework (BeEF)3m:4s
  • Checkpoint: Social Engineering Attacks
16 -Wireless Attacks
  • Wireless Attacks2m:38s
  • Wireless Security16m:26s
  • Wireless Signal Exploitation4m:1s
  • Aircrack-ng4m:54s
  • Wireless Hacking8m:34s
  • WPS PIN Attacks11m:37s
  • Captive Portal Attacks4m:28s
  • Evil Twin2m:59s
  • Kismet3m:51s
  • Wi-Fi Protocol Fuzzing4m:21s
  • Checkpoint: Wireless Attacks
17 -Network Attacks
  • Network Attacks3m:51s
  • Stress Testing6m:22s
  • Bypassing Segmentation5m:21s
  • MAC Spoofing5m:12s
  • NAC Bypass4m:42s
  • Session-Based Attacks3m:51s
  • Service Exploitation5m:25s
  • Packet Crafting4m:24s
  • Netcat7m:36s
  • Using Netcat10m:59s
  • Default Network Credentials5m:2s
  • LLMNR/NBT-NS Poisoning4m:43s
  • ARP Poisoning7m:5s
  • Intro to Metasploit5m:29s
  • Checkpoint: Network Attacks
18 -Authentication Attacks
  • Authentication Attacks3m:24s
  • Types of Password Attack4m:3s
  • Password Cracking Tools7m:54s
  • Credential Attacks7m:10s
  • Credential Passing Attacks5m:9s
  • Directory Service Attacks4m:16s
  • CrackMapExec (CME)2m:8s
  • SAML Attacks5m:27s
  • OpenID Connect (OIDC) Attacks5m:42s
  • Hash Attacks4m:3s
  • Checkpoint: Authentication Attacks
19 -Host Attacks
  • Host Attacks3m:16s
  • Privilege Escalation6m:31s
  • Conducting Privilege Escalation13m:6s
  • Credential Harvesting3m:55s
  • Misconfigured Endpoints3m:34s
  • Unquoted Service Paths4m:25s
  • Disabling Security Software6m:19s
  • Payload Obfuscation4m:27s
  • User-Controlled Access Bypass7m:2s
  • Shell and Kiosk Escapes3m:58s
  • Library and Process Injection6m:57s
  • Log Tampering3m:3s
  • Living Off the Land3m:28s
  • Checkpoint: Host Attacks
20 -Web Application Vulnerabilities
  • Web Application Vulnerabilities2m:51s
  • Race Conditions4m:53s
  • Buffer Overflows12m:26s
  • Buffer Overflow Attacks6m:13s
  • Authentication Flaws and Insecure References5m:53s
  • Improper Error Handling5m:13s
  • Improper Headers6m:8s
  • Code Signing1m:58s
  • Vulnerable Components11m:41s
  • Software Composition9m:46s
  • Checkpoint: Web Application Vulnerabilities
21 -Web Application Attacks
  • Web Application Attacks3m:20s
  • Directory Traversals9m:32s
  • Directory Traversal Tools10m:32s
  • Cross-Site Scripting (XSS)8m:56s
  • Request Forgeries4m:5s
  • SQL Injections7m:0s
  • Performing SQL Injection Attacks8m:27s
  • Injection Attacks5m:21s
  • File Inclusions3m:52s
  • Arbitrary Code Execution4m:20s
  • Web Application Session Hijacking5m:39s
  • Abusing APIs7m:17s
  • OWASP ZAP5m:7s
  • Attacking Web Applications15m:36s
  • Checkpoint: Web Application Attacks
22 -Cloud Attacks
  • Cloud Attacks2m:53s
  • Identity and Access Management (IAM) Misconfigurations4m:13s
  • Resource Misconfigurations4m:33s
  • Logging Information Exposures4m:32s
  • Metadata Service Attacks6m:27s
  • Image and Artifact Tampering5m:59s
  • Supply Chain Attacks4m:54s
  • Container Exploits and Attacks3m:46s
  • Trust Relationship Abuse6m:38s
  • Third-party Integration Exploits5m:12s
  • Cloud Security Testing6m:11s
  • Conducting Cloud Audits13m:58s
  • Checkpoint: Cloud Attacks
23 -Attacking Specialized Systems
  • Attacking Specialized Systems2m:46s
  • Mobile Device Attacks12m:15s
  • Tools for Mobile Device Attacks5m:8s
  • Bluetooth Attacks3m:9s
  • NFC and RFID Attacks4m:46s
  • AI Attacks4m:35s
  • Operational Technology (OT)9m:14s
  • OT Attacks10m:50s
  • Testing OT Systems3m:37s
  • Checkpoint: Attacking Specialized Systems
24 -Automated Attacks
  • Automated Attacks2m:58s
  • Automating Attacks with Bash3m:41s
  • Empire/PowerSploit4m:47s
  • PowerView4m:29s
  • PowerUpSQL5m:47s
  • AD Search5m:34s
  • Impacket3m:8s
  • Scapy6m:49s
  • Caldera4m:8s
  • Infection Monkey3m:9s
  • Atomic Red Team4m:10s
  • Checkpoint: Automated Attacks
25 -Persistence
  • Persistence2m:37s
  • Command and Control3m:41s
  • Automating Persistence5m:6s
  • Remote Shells4m:8s
  • Using Remote Shells4m:55s
  • Backdoor5m:53s
  • Remote Access Trojans5m:45s
  • Account Credentials5m:32s
  • Browser-Based Persistence5m:16s
  • Security Control Tampering6m:53s
  • Checkpoint: Persistence
26 -Lateral Movement
  • Lateral Movement3m:4s
  • Pivoting and Relaying3m:5s
  • Using ProxyChains7m:43s
  • Enumerating for Lateral Movement3m:21s
  • Service Discovery5m:41s
  • Protocol Discovery3m:0s
  • Remote Access Discovery4m:27s
  • Printer Discovery4m:19s
  • Discovering Internal Websites8m:26s
  • Living Off the Land Tools4m:30s
  • sshuttle4m:39s
  • Covenant5m:7s
  • Checkpoint: Lateral Movement
27 -Exfiltration
  • Exfiltration2m:33s
  • Covert Channels4m:4s
  • Steganography5m:46s
  • Covert Channel Using DNS7m:39s
  • Covert Channel Using ICMP3m:34s
  • Covert Channel Using HTTPS4m:42s
  • Alternate Data Streams (ADS)3m:50s
  • Exfiltrating Data4m:15s
  • Checkpoint: Exfiltration
28 -Cleanup and Restoration
  • Cleanup and Restoration2m:6s
  • Persistence Removal3m:20s
  • Revert Configuration Changes3m:23s
  • Created Credentials Removal2m:32s
  • Removal of Testing Tools2m:25s
  • Decommission Testing Infrastructure3m:9s
  • Artifact Preservation2m:38s
  • Secure Data Destruction2m:34s
  • Checkpoint: Cleanup and Restoration
29 -Remediation Recommendations
  • Remediation Recommendations2m:27s
  • System Hardening10m:50s
  • User Input Sanitization4m:42s
  • Network and Infrastructure Controls3m:55s
  • Authentication Recommendations4m:27s
  • Encryption Recommendations4m:45s
  • Patch Management3m:51s
  • Process Level Remediation2m:57s
  • Administrative Controls14m:20s
  • Physical Controls6m:55s
  • Operational Controls and Policies2m:55s
  • Implementing Recommendations8m:50s
  • Checkpoint: Remediation Recommendations
30 -Penetration Test Reporting
  • Penetration Test Reporting2m:30s
  • Executive Summary Process2m:57s
  • Root Cause Analysis4m:24s
  • Report Components4m:25s
  • Risk Scoring and Prioritization3m:39s
  • Definitions in the Report3m:37s
  • Limits and Assumptions4m:23s
  • Special Considerations5m:37s
  • Report Analysis Workshop7m:3s
  • Checkpoint: Penetration Test Reporting
31 -Conclusion
  • Conclusion12m:47s
  • BONUS: What comes next?3m:44s
  • Practice Exam
Course $399USD

Reviews