CompTIA PenTest+ Practice Test

Reviewed by Editorial Team
The ProProfs editorial team is comprised of experienced subject matter experts. They've collectively created over 10,000 quizzes and lessons, serving over 100 million users. Our team includes in-house content moderators and subject matter experts, as well as a global network of rigorously trained contributors. All adhere to our comprehensive editorial guidelines, ensuring the delivery of high-quality content.
Learn about Our Editorial Process
| By Thames
T
Thames
Community Contributor
Quizzes Created: 7097 | Total Attempts: 80,150
| Questions: 15 | Updated: Jul 15, 2026
Please wait...
Question 1 / 16
🏆 Rank #--
0 %
0/100
Score 0/100

1. Which phase of the penetration testing methodology involves gathering information about a target using public sources and passive techniques?

Submit
Please wait...
About This Quiz
CompTIA Pentest+ Practice Test - Quiz

This quiz evaluates your knowledge of penetration testing principles, methodologies, and tools covered in the CompTIA PenTest+ certification. Test your understanding of reconnaissance, vulnerability assessment, exploitation, reporting, and professional practices essential for security testing professionals. Ideal for candidates preparing for the PenTest+ exam or those seeking to validate their penetration... see moretesting expertise. see less

2.

What first name or nickname would you like us to use?

You may optionally provide this to label your report, leaderboard, or certificate.

2. What is the primary purpose of a Rules of Engagement (ROE) document in a penetration test?

Submit

3. Which of the following is a passive reconnaissance technique?

Submit

4. What does CVSS stand for in vulnerability assessment?

Submit

5. Which tool is commonly used for network mapping and host discovery?

Submit

6. In the context of SQL injection, what does parameterized query help prevent?

Submit

7. What is the primary goal of privilege escalation in a penetration test?

Submit

8. Which methodology emphasizes starting with the least privileged user and working toward higher privileges?

Submit

9. What is a common use of the Metasploit Framework in penetration testing?

Submit

10. Which of the following best describes a zero-day vulnerability?

Submit

11. What is the primary purpose of a penetration test report?

Submit

12. In social engineering, which technique involves impersonating a trusted entity to extract information?

Submit

13. What does the term 'pivoting' refer to in penetration testing?

Submit

14. Which encryption standard is considered most secure for modern data protection?

Submit

15. What is the primary benefit of conducting a penetration test under a formal contract and NDA?

Submit
×
Saved
Thank you for your feedback!
View My Results
Cancel
  • All
    All (15)
  • Unanswered
    Unanswered ()
  • Answered
    Answered ()
Which phase of the penetration testing methodology involves gathering...
What is the primary purpose of a Rules of Engagement (ROE) document in...
Which of the following is a passive reconnaissance technique?
What does CVSS stand for in vulnerability assessment?
Which tool is commonly used for network mapping and host discovery?
In the context of SQL injection, what does parameterized query help...
What is the primary goal of privilege escalation in a penetration...
Which methodology emphasizes starting with the least privileged user...
What is a common use of the Metasploit Framework in penetration...
Which of the following best describes a zero-day vulnerability?
What is the primary purpose of a penetration test report?
In social engineering, which technique involves impersonating a...
What does the term 'pivoting' refer to in penetration testing?
Which encryption standard is considered most secure for modern data...
What is the primary benefit of conducting a penetration test under a...
play-Mute sad happy unanswered_answer up-hover down-hover success oval cancel Check box square blue
Alert!