Total: Comptia Pentest+ (Ethical Hacking) + 2 Free Tests
Last updated 6/2022
MP4 | Video: h264, 1280x720 | Audio: AAC, 44.1 KHz
Language: English | Size: 9.73 GB | Duration: 14h 43m

From Total Seminars: Michael Solomon on ethical hacking & high-level penetration testing. Hack like a pro.
What you'll learn
Includes 2 Bonus Practice Exams. We have added a CompTIA PenTest+ Practice Test and a Certified Ethical Hacker CEH Practice Test.
How to plan and scope a penetration test as a contracted pen tester for a client (as an ethical hacker, you'll be the good guy and get paid to hack networks!)
How to work within a virtual environment to practice your pen testing skills, including using Oracle VM manager, Kali Linux, Metasploitable, and DVWA
Where to find vulnerabilities and how to penetrate a network in order to run exploits, then how to report those vulnerabilities to the client for remediation
How to gather intel on a network by scanning and enumerating (finding) targets, then searching out the weak points on those targets
Understand social engineering attacks, exploit network-based vulnerabilities, and intercept traffic via on-path (man-in-the-middle) attacks
How to use pen testing tools like Nmap, Nessus, Nslookup, John the Ripper, Immunity Debugger, Aircrack-NG, Wireshark, and many more
How to write reports, explain post-delivery activities, and recommend remediation strategies to your client
Requirements
There are no requirements to take this course, nor are there any requirements to sit for the CompTIA PenTest+ exam, however, basic familiarity with networks and network security is suggested
It's recommended to be familiar with the information in the CompTIA Network+ and Security+ exams
Although this course is a CompTIA PenTest+ exam prep, it's also designed for a broader audience, so those without much network security knowledge can still gain valuable information on pen testing and ethical hacking
Description
Mike Meyers and the Total Seminars Team, your source for best-selling cybersecurity courses, brings you this ethical hacking and penetration testing course with your instructor Michael Solomon, Ph.D., CISSP, PMP, CISM. Prepare for the CompTIA PenTest+ PT0-002 exam. This is NOT a boring voice over PowerPoint course. Michael speaks to you and presents the material in an engaging interactive style that will keep you interested and make it easier to understand. Check out the free sample lectures and you will see the difference.We've added 2 bonus Practice Tests. One practice test covers the EC-Council Certified Ethical Hacker CEH certification exam. The other practice test covers the CompTIA PenTest+ certification exam. Test your readiness to pass either of these industry ethical hacking certification exams.With 30+ years of experience in security, privacy, blockchain, and data science, and an energetic presentation style, Michael takes his proficiency in network penetration testing and consolidates it into this informative and engaging course.WHY SHOULD I TAKE THIS COURSE?Did you know penetration testers' average salary is $71,929?* And this career is in one of the fastest-growing job markets.Whether you're looking to pass the CompTIA PenTest+ certification exam, take your next step in the CompTIA Cybersecurity Pathway, or you're just looking to learn some awesome ethical hacking skills, you're in the right place. Keep in mind there's much more to being an ethical hacker than what's covered here, including how to secure a network, however this course focuses on how to be a pen tester. A pen tester plans and scopes a pen test engagement with a client, finds vulnerabilities, exploits them to get into a network, then reports on those findings to the client.This course shows you how to:Use the tools you'll need to scan networks, crack passwords, analyze and intercept traffic, discover code vulnerabilities, and compromise resourcesRecognize vulnerabilities within a system, run exploits, and suggest solutions to a client to remediate the weak pointsWork within a virtual environment to practice your pen testing skills, including using Oracle VM manager, Kali Linux, Metasploitable, and DVWAScope, plan, and execute a pen test engagement from start to finishWHAT'S COVERED?PenTest+ Exam Domain - Percentage of Exam1.0 Planning and Scoping - 14%Compare and contrast governance, risk, and compliance conceptsExplain the importance of scoping and organizational/customer requirementsGiven a scenario, demonstrate an ethical hacking mindset by maintaining professionalism and integrity2.0 Information Gathering and Vulnerability Scannings 22%Given a scenario, perform passive reconnaissanceGiven a scenario, perform active reconnaissanceGiven a scenario, analyze the results of a reconnaissance exerciseGiven a scenario, perform vulnerability scanning3.0 Attacks and Exploits - 30% Given a scenario, research attack vectors and perform network attacksGiven a scenario, research attack vectors and perform wireless attacksGiven a scenario, research attack vectors and perform application-based attacksGiven a scenario, research attack vectors and perform attacks on cloud technologiesExplain common attacks and vulnerabilities against specialized systemsGiven a scenario, perform a social engineering or physical attackGiven a scenario, perform post-exploitation techniques4.0 Reporting and Communications 18%Compare and contrast important components of written reportsGiven a scenario, analyze the findings and recommend the appropriate remediation within a reportExplain the importance of communication during the penetration testing processExplain post-report delivery activities5.0 Tools and Code Analysis 16%Explain the basic concepts of scripting and software developmentGiven a scenario, analyze a script or code sample for use in a penetration testExplain use cases of the following tools during the phases of a penetration testEXAM INFOExam code: PT0-002Max. 85 questions (performance-based and multiple choice)Length of exam: 165 minutesPassing score: 750 (on a scale of 100-900)Exam voucher cost: $381Recommended experience: Network+, Security+ or equivalent knowledge. Minimum of 3-4 years of hands-on information security or related experience. While there is no required prerequisite, PenTest+ is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus.HOW DO I TAKE THE COMPTIA PENTEST+ EXAM? Buy an exam voucher (get your discount voucher at Total Seminars' website), schedule your exam on the Pearson VUE website, then take the exam at a qualifying Pearson VUE testing center.WHAT'S THE BIG DEAL ABOUT THE COMPTIA PENTEST+, ANYWAY? CompTIA's PenTest+ is the only penetration testing exam taken at a Pearson VUE testing center or online, with both hands-on, performance-based questions and multiple-choice, to ensure each candidate possesses the skills, knowledge, and ability to perform tasks on systems.Penetration testing and information security is one of the fastest-growing job categories according to the U.S. Bureau of Labor Statistics. It predicts that roles requiring these skills will see 28 percent overall growth by 2026.COMPTIA PENTEST+ VS. EC-COUNCIL CEH CERTIFICATIONSThe CompTIA PenTest+ is your quickest and most cost-effective route to a pen testing certificationThe PenTest+ includes the latest mobile and cloud penetration testing skills, including IoT, as well as traditional desktop & server systems (CEH covers only traditional desktop & server systems)The PenTest+ better matches employer needs by covering not just technical topics, but also business processes, project flow, best practices, and professionalism in pen testing (CEH is strictly technical)The PenTest+ exam voucher costs $349 (compared to the CEH $1150 non-member plus application fee)Take a look at these student reviews:***** "This is an excellent course!! Even in earlier chapters, the instructor gets you going on sample exercises to chop up the theoretical content a little, which always helps. With a course like this, hands-on is everything. I also appreciate that the theoretical parts are NOT TOO LONG AT ONCE!! Total Seminars did a fantastic job of breaking the content up in just the right places. LOVE this course!" – Chris N***** "Amazing. Well Explained. Detail description for all the fundamental terms." – Nisarg T***** "Instruction was excellent. Including notes as resources was a big help! I reviewed the notes while watching the videos and I think that is really going to help me with information retention. The instructor used real-world examples to demonstrate points. Overall, I feel confident I can pass the test after studying the materials and doing the exercises the instructor emphasizes. The instructor also highlighted several key points to study for the exam for maximum preparation." - Tim W***** "This is what I was hoping for and it's much more upbeat than most of the lulling video series' I've seen before." – John G***** "This course covers everything in the approved CompTIA PenTest+ certification test. The presenter knows his stuff, has done real work pentests and does a good job of showing off the tools you'll be quizzed on and how to manipulate and analyze the results. Highly recommend this for anyone with Security+ that is looking to specialize as a pentester. Great place to start!" – Casey D***** "Very well thought out course. The instructor is very knowledgeable, and the course is laid out in a great way! A lot of time was put into this and it shows!" – Luke P
Overview
Section 1: Introduction
Lecture 1 Introduction to the CompTIA PenTest+ (PT0-002) Course
Lecture 2 About the CompTIA PenTest+ (PT0-002) Exam
Section 2: Planning and Engagement
Lecture 3 Planning a Pen Test
Lecture 4 Rules of Engagement
Lecture 5 Regulatory Compliance
Lecture 6 Resources and Budget
Lecture 7 Impact and Constraints
Lecture 8 Support Resources
Lecture 9 Legal Groundwork
Lecture 10 Service Provider Agreements
Lecture 11 Standards and Methodologies, Part 1
Lecture 12 Standards and Methodologies, Part 2
Lecture 13 Environmental and Scoping Considerations
Lecture 14 Ethical Mindset
Lecture 15 Lab Environment Setup
Lecture 16 Project Strategy and Risk
Lecture 17 Scope Vulnerabilities
Lecture 18 Compliance-Based Assessments
Section 3: Information Gathering and Vulnerability Scanning
Lecture 19 Scanning and Enumeration
Lecture 20 Scanning Demo
Lecture 21 Packet Investigation
Lecture 22 Packet Inspection Demo
Lecture 23 Labtainers Setup
Lecture 24 Labtainers Lab (Wireshark)
Lecture 25 Application and Open-Source Resources
Lecture 26 Passive Reconnaissance
Lecture 27 Active Reconnaissance
Lecture 28 Vulnerability Scanning
Lecture 29 Vulnerability Scanning Demo
Lecture 30 Labtainers Lab (Network Basics)
Lecture 31 Labtainers Lab (Nmap Discovery)
Lecture 32 Target Considerations
Lecture 33 Analyzing Scan Output
Lecture 34 Nmap Scoping and Output Options
Lecture 35 Nmap Timing and Performance Options
Lecture 36 Prioritization of Vulnerabilities
Lecture 37 Common Attack Techniques
Lecture 38 Automating Vulnerability Scans
Lecture 39 Credential Attacks
Lecture 40 Labtainers Lab (Password Cracking)
Lecture 41 Labtainers Lab (Secure Socket Layers)
Lecture 42 Labtainers Lab (Routing Basics)
Section 4: Network-Based Attacks
Lecture 43 Exploit Resources and Network Attacks
Lecture 44 Network-Based Exploits
Lecture 45 FTP Exploit Demo
Lecture 46 Man-in-the-middle Exploits
Lecture 47 Labtainers Lab (TCP/IP Attacks)
Lecture 48 Labtainers Lab (ARP Spoof Attacks)
Lecture 49 Labtainers Lab (Local DNS Attacks)
Lecture 50 Labtainers Lab (MACs and Hash Functions)
Section 5: Selecting Pen Testing Tools
Lecture 51 Wireless Exploits
Lecture 52 Wireless Exploits, Part 2
Lecture 53 Antennas
Section 6: Reporting and Communication
Lecture 54 OWASP Top 10
Lecture 55 Application Exploits, Part 1
Lecture 56 SQL Injection Demo
Lecture 57 Labtainers Lab (SQL Injection)
Lecture 58 Application Exploits, Part 2
Lecture 59 Application Exploits, Part 3
Lecture 60 Cross-Site Scripting Demo
Lecture 61 Labtainers Lab (Cross-Site Scripting)
Lecture 62 Labtainers Lab (Cross-Site Request Forgery)
Lecture 63 Code Vulnerabilities
Lecture 64 API Attacks and Attack Resources
Lecture 65 Privilege Escalation (Linux)
Lecture 66 Privilege Escalation (Windows)
Lecture 67 Misc. Privilege Escalation
Lecture 68 Misc. Local Host Vulnerabilities
Section 7: Attacking the Cloud
Lecture 69 Cloud Attacks, Part 1
Lecture 70 Cloud Attacks, Part 2
Section 8: Specialized and Fragile Systems
Lecture 71 Mobile Attacks
Lecture 72 IoT Attacks
Lecture 73 Data Storage and Management Interface Attacks
Lecture 74 Virtual and Containerized Environment Attacks
Lecture 75 Labtainers Lab (Industrial Control System)
Section 9: Social Engineering and Physical Attacks
Lecture 76 Pretext for a Social Engineering Attack
Lecture 77 Remote Social Engineering
Lecture 78 Spear Phishing Demo
Lecture 79 In-Person Social Engineering
Lecture 80 Physical Security
Section 10: Post-Exploitation
Lecture 81 Post-Exploitation Techniques
Lecture 82 Post-Exploitation Tools
Lecture 83 Network Segmentation Testing
Lecture 84 Persistence and Stealth
Lecture 85 Detection Avoidance Techniques
Section 11: Post-Engagement Activities
Lecture 86 Report Writing
Lecture 87 Important Components of Written Reports
Lecture 88 Mitigation Strategies
Lecture 89 Technical and Physical Controls
Lecture 90 Administrative and Operational Controls
Lecture 91 Communication
Lecture 92 Presentation of Findings
Lecture 93 Post-Report Activities
Lecture 94 Data Destruction Process
Section 12: Tools and Programming
Lecture 95 Using Scripting in Pen Testing
Lecture 96 Bash Scripting Basics
Lecture 97 Bash Scripting Techniques
Lecture 98 PowerShell Scripts
Lecture 99 Ruby Scripts
Lecture 100 Python Scripts
Lecture 101 Scripting Languages Comparison
Lecture 102 Data Structures, Part 1
Lecture 103 Data Structures, Part 2
Lecture 104 Libraries
Lecture 105 Classes
Lecture 106 Procedures and Functions
Lecture 107 Perl and jаvascript
Section 13: Tools Inventory
Lecture 108 Pen Testing Toolbox
Lecture 109 Using Kali Linux
Lecture 110 Scanners & Credential Tools
Lecture 111 Code-Cracking Tools
Lecture 112 Open-Source Research Tools
Lecture 113 Wireless and Web Pen Testing Tools
Lecture 114 Remote Access Tools
Lecture 115 Analyzers and Mobile Pen Testing Tools
Lecture 116 Other Pen Testing Tools
Lecture 117 Labtainers Lab (Metasploit Framework)
Lecture 118 Labtainers Lab (Wireshark Packet Inspection)
Lecture 119 Labtainers Lab (SSH)
Lecture 120 Scanners, Debuggers, and Wireless Tools
Lecture 121 Web, Steganography, and Cloud Tools
Section 14: Practice Tests
Anyone interested in ethical hacking, pen testing, vulnerability testing, and network security,Anyone looking to prepare for the CompTIA PenTest+ (PT0-002) exam,Security Analysts, Network Security Ops, Application Security Vulnerability Analysts
Screenshots