EXAM CODES PT0-002 AND PT0-003
CompTIA PenTest+ is for cybersecurity professionals tasked with penetration testing and security consulting.
Demonstrate Competency of Current Trends:
Unlike other penetration testing exams that only cover a portion of stages, CompTIA PenTest+ uses both performance-based and knowledge-based questions to ensure all stages are mastered.
Prove You Know the Latest Techniques:
CompTIA PenTest+ is the only product on the market covering artificial intelligence (AI), hands-on inventory, scanning and analysis, attacks, lateral movement, as well as planning, scoping, and vulnerability management.
Perform Hands-on Tasks:
CompTIA PenTest+ requires a candidate to demonstrate key pen testing skills for all attack surfaces , including the cloud, web apps, APIs, IoT, on-premises and hybrid network environments.
Thank you to all the cybersecurity professionals who sat for the beta exam for the next version of PenTest+. The beta exam closed Aug 6. Due to beta exam scoring processes, participants will not know whether they passed/earned the certification until the final release date, tentatively December 2024, and will be notified directly from Pearson VUE.
Includes updated techniques emphasizing scoping and organizational/customer requirements, governance, risk and compliance concepts, reporting, communication, remediation recommendations and demonstrating an ethical hacking mindset.
Expanded coverage of information gathering, enumeration, and passive/active reconnaissance, with the goal of conducting inventory. Includes identifying scripts and explaining use cases of various scripting languages (scripting or coding is not required).
Updated skills that cover vulnerability scanning tools, analysis, management, and physical security weaknesses.
Includes new techniques to analyze targets, select the best approach, and perform network attacks, wireless attacks, application-based attacks, and cloud attacks. Learn about artificial intelligence (AI) attacks and scripting automation.
Additional focus on maintaining persistence, lateral movement, staging, exfiltration and post-exploitation, including clean up and restoration activities.
| Exam Code | PT0-002 |
PT0-003 | |
| Launch Date | October 28, 2021 | December 17, 2024 | |
| Exam Description | The CompTIA PenTest+ will certify the successful candidate has the knowledge and skills required to plan and scope a penetration testing engagement including vulnerability scanning, understand legal and compliance requirements, analyze results, and produce a written report with remediation techniques. | The CompTIA PenTest+ will certify the successful candidate has the knowledge and skills required to plan and scope a penetration testing engagement within compliance requirements, conduct enumeration and reconnaissance activities, analyze vulnerabilities, launch attacks, exfiltrate data and produce a written report with remediation techniques. | |
| Number of Questions | Maximum of 85 questions | Maximum of 90 questions | |
| Type of Questions | Performance-based and multiple choice | Performance-based and multiple choice | |
| Length of Test | 165 minutes | 165 minutes | |
| Passing Score | 750 (on a scale of 100-900) | 750 (on a scale of 100-900) | |
| Recommended Experience | Network+, Security+ or equivalent knowledge. Minimum of 3-4 years of hands-on information security or related experience. While there is no required prerequisite, PenTest+ is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus. | Network+, Security+ or equivalent knowledge. 3–4 years in a penetration tester job role. | |
| Languages | English, Japanese, Portuguese and Thai |
English on release, other languages TBD | |
| Retirement | June 17, 2024 | Usually three years after launch | |
| DoD 8140 Approved Work Roles | To view approved work roles, click here. For more information on 8140, click here. | PenTest+ PT0-003 will continue to be approved for the same U.S. DoD Directive 8140.03M work roles as the previous version, PT0-002. To view approved work roles, click here. For more information on 8140, click here. | |
| Testing Provider | Pearson VUE |
Pearson VUE |
|
| Price | $381 USD (See all pricing) | TBD | |
 | EC-Council Certified Ethical Hacker (CEH) | GIAC Penetration Tester (GPEN) | Offensive Security Certified Professional (OSCP) | |
| Performance-Based Questions | ✔ | ✔ | ||
| Experience Level | Intermediate | Beginner | Intermediate | Intermediate/Advanced |
| Exam Focus | Penetration testing and security consulting | Penetration testing | Penetration testing from a business-value | Penetration testing |
| Vendor Neutral | Yes | Yes | Yes | Yes |
Keep your certification up to date with CompTIA’s Continuing Education (CE) program. It’s designed to be a continued validation of your expertise and a tool to expand your skillset. It’s also the ace up your sleeve when you’re ready to take the next step in your career.
Get the most out of your certification
Information technology is an incredibly dynamic field, creating new opportunities and challenges every day. Participating in our Continuing Education (CE) program will enable you to stay current with new and evolving technologies and remain a sought-after IT and security expert.
The CompTIA Continuing Education program
Your CompTIA PenTest+ certification is good for three years from the date of your exam. The CE program allows you to extend your certification in three-year intervals through activities and training that relate to the content of your certification.
It’s easy to renew
You can participate in a number of activities and training programs, including higher certifications, to renew your CompTIA PenTest+ certification. Collect at least 60 Continuing Education Units (CEUs) in three years and upload them to your certification account, and your CompTIA PenTest+ certification will automatically renew.
Want more details? Learn more about the CompTIA Continuing Education program.
