CompTIA PenTest+ is the only penetration testing exam taken at a Pearson VUE testing center with both hands-on, performance-based questions and multiple-choice, to ensure each candidate possesses the skills, knowledge, and ability to perform tasks on systems. PenTest+ exam also includes management skills used to plan, scope, and manage weaknesses, not just exploit them.
PenTest+ is unique because our certification requires a candidate to demonstrate the hands-on ability and knowledge to test devices in new environments such as the cloud and mobile, in addition to traditional desktops and servers.
CompTIA PenTest+ is compliant with ISO 17024 standards and approved by the US DoD to meet directive 8140/8570.01-M requirements. Regulators and government rely on ANSI accreditation, because it provides confidence and trust in the outputs of an accredited program. Over 2.3 million CompTIA ISO/ANSI-accredited exams have been delivered since January 1, 2011.
Explain the importance of planning and key aspects of compliance-based assessments
Gather information to prepare for exploitation then perform a vulnerability scan and analyze results.
Exploit network, wireless, application, and RF-based vulnerabilities, summarize physical security attacks, and perform post-exploitation techniques
Conduct information gathering exercises with various tools and analyze output and basic scripts (limited to: Bash, Python, Ruby, PowerShell)
Utilize report writing and handling best practices explaining recommended mitigation strategies for discovered vulnerabilities
Security Analyst (II)
Vulnerability Assessment Analyst
Network Security Operations
Application Security Vulnerability
|Launch Date||July 31, 2018|
|Exam Description||The CompTIA PenTest+ certification verifies that successful candidates have the knowledge and skills required to plan and scope an assessment, understand legal and compliance requirements, perform vulnerability scanning and penetration testing, analyze data, and effectively report and communicate results.|
|Number of Questions||Maximum of 85 questions|
|Type of Questions||Performance-based and multiple choice|
|Length of Test||165 minutes|
|Passing Score||750 (on a scale of 100-900)|
|Recommended Experience||Network+, Security+ or equivalent knowledge. Minimum of 3-4 years of hands-on information security or related experience. While there is no required prerequisite, PenTest+ is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus.|
|Languages||English and Japanese|
|Retirement||TBD - Usually three years after launch|
|Testing Provider||Pearson VUE
Gavin Dennis, Senior IT Security Consultant
|EC-Council Certified Ethical Hacker (CEH)||GIAC Penetration Tester (GPEN)||Offensive Security Certified Professional (OSCP)|
|Performance Based Questions||✔||✔|
|Experience Level||Intermediate||Intermediate||Intermediate||Intermediate / Advanced|
|Exam Focus||Penetration testing and vulnerability assessment||Penetration Testing||Penetration Testing from a Business-value||Real World-based with a Lab and submitted report|
CompTIA offers a wealth of certification training that is designed for exam success. Find out more and explore all training options.
Supercharge your certification training with hands-on online training that simulates real world IT configurations. Jump into the role of an administrator, complete basic to advanced tasks and quickly understand the impact of the system changes you make.
Train anywhere, anytime. Master all exam objectives through learning content that is enhanced with videos, flash cards
Go into your PenTest+ certification exam with confidence. Adaptive exam preparation in this intelligent online training companion will reinforce what you already know and fill the gaps in areas you need to improve.
Developed by CompTIA for the CompTIA certification candidate, Study Guides are available in print or eBook format and packed with informative and engaging content tied to exam objectives.
Together with our partner ITProTV, CompTIA offers videos moderated by PenTest+ experts who explain the exam objectives of A+ in a talk show format that is easy to follow.
Whether you’re looking for in-classroom or live online training, CompTIA offers best-in-class instructor-led training for both individuals and teams. You can also find training among CompTIA’s vast network of Authorized Training Partners.
Training for You Training for Your Groups CompTIA Training Partners
Keep your certification up to date with CompTIA’s Continuing Education (CE) program. It’s designed to be a continued validation of your expertise and a tool to expand your skillset. It’s also the ace up your sleeve when you’re ready to take the next step in your career.
Get the most out of your certification
Information technology is an incredibly dynamic field, creating new opportunities and challenges every day. Participating in our Continuing Education program will enable you to stay current with new and evolving technologies and remain a sought-after IT and security expert.
The CompTIA Continuing Education program
Your CompTIA PenTest+ certification is good for three years from the date of your exam. The CE program allows you to extend your certification in three-year intervals through activities and training that relate to the content of your certification.
It’s easy to renew
You can participate in a number of activities and training programs, including higher certifications, to renew your CompTIA PenTest+ certification. Collect at least 60 Continuing Education Units (CEUs) in three years and upload them to your certification account, and your CompTIA PenTest+ certification will automatically renew.
Want more details? Learn more about the CompTIA Continuing Education program.
CEUs needed for renewal