Can I take the course for free?

No, you cannot take this course for free. When you enroll in the course, you get access to all of the courses in the Specialization, and you earn a certificate when you complete the work. If you cannot afford the fee, you can apply for financial aid.

Will I earn university credit for completing the Specialization?

This Specialization doesn't carry university credit, but some universities may choose to accept Specialization Certificates for credit. Check with your institution to learn more.

CompTIA PenTest+ 专项课程

Coursera PlusMonthly 3 个月课程4 折优惠 ，让你轻松掌握闪耀技能。立即节省

CompTIA PenTest+ 专项课程

位教师：Michael Solomon

包含在中

了解更多

4 门课程系列

深入学习学科知识

高级设置等级

推荐体验

4 周完成

在 5 小时一周

灵活的计划

自行安排学习进度

4 门课程系列

深入学习学科知识

高级设置等级

推荐体验

4 周完成

在 5 小时一周

灵活的计划

自行安排学习进度

您将学到什么

How to plan, scope, and systematically execute penetration tests using industry-standard methodologies including MITRE ATT&CK, OWASP, and PTES
How to identify, exploit, and document vulnerabilities across networks, web applications, and specialized systems including IoT and mobile devices
How to conduct post-exploitation activities, maintain access,and produce penetration test reports with actionable remediation recommendations

您将获得的技能

您将学习的工具

要了解的详细信息

可分享的证书

添加到您的领英档案

授课语言：英语（English）

了解顶级公司的员工如何掌握热门技能

了解关于 Coursera for Business 的更多信息

Petrobras, TATA, Danone, Capgemini, P&G 和 L'Oreal 的徽标

精进特定领域的专业知识

向大学和行业专家学习热门技能
借助实践项目精通一门科目或一个工具
培养对关键概念的深入理解
通过 Total Seminars 获得职业证书

专业化 - 4门课程系列

This specialization provides comprehensive preparation for the CompTIA PenTest+ certification and equips learners with the hands-on penetration testing skills demanded by today's cybersecurity industry. Spanning four modular courses and approximately 17 hours of expert video instruction, the specialization covers the complete penetration testing lifecycle: from planning and legal scoping, through reconnaissance, vulnerability scanning, and network exploitation, to web and cloud attacks, social engineering, post-exploitation, and professional reporting.

应用的学习项目

Learners benefit by developing practical, vendor-neutral skills directly applicable to roles such as penetration tester, ethical hacker, red team analyst, and security consultant. Rather than focusing on a single tool or platform, the specialization builds systematic methodology and decision-making skills aligned to real-world engagements and all PenTest+ exam domains: Planning & Scoping, Information Gathering & Vulnerability Scanning, Attacks & Exploits, Reporting & Communication, and Tools & Code Analysis. By the end of this specialization, learners will be able to plan, execute, document, and communicate the results of a full-scope penetration test using industry-standard frameworks and tools.

PenTest Planning & Information Gathering

第 1 门课程, 小时

您将学到什么

How to plan, scope, and document a penetration testing engagement including rules of engagement, NDAs, SOWs, and regulatory compliance requirements
How to perform passive and active reconnaissance using OSINT tools and techniques to build a comprehensive intelligence picture of a target
How to apply industry-standard penetration testing frameworks (MITRE ATT&CK, PTES, CREST) to structure and prioritize a professional engagement

您将获得的技能

类别：Penetration Testing

类别：Risk Management Framework

类别：Technical Communication

类别：Vulnerability Assessments

类别：Vulnerability Scanning

类别：MITRE ATT&CK Framework

类别：Network Analysis

类别：Open Web Application Security Project (OWASP)

类别：Regulatory Compliance

类别：Cyber Security Assessment

类别：Scope Management

类别：Drive Engagement

类别：Security Testing

类别：Ethical Standards And Conduct

类别：Cyber Threat Intelligence

类别：Test Planning

类别：OSI Models

Vulnerability Scanning Network Attacks

第 2 门课程, 小时

您将学到什么

How to use vulnerability scanning tools (Nmap, Wireshark, Metasploit) to identify security weaknesses using CVSS and EPSS scoring frameworks
How to perform network-based attacks including man-in-the-middle, ARP manipulation, and service exploitation against real and simulated targets
How to identify and exploit wireless network vulnerabilities including WPA2 handshake attacks and RF-based attack vectors such as Bluetooth exploits

您将获得的技能

类别：Penetration Testing

类别：Wireless Networks

类别：Vulnerability Management

类别：Network Protocols

类别：Network Analysis

类别：Vulnerability Scanning

类别：Vulnerability Assessments

类别：Data Manipulation

类别：Security Engineering

类别：Network Security

类别：Network Monitoring

类别：Brute-force attacks

类别：Cyber Security Assessment

类别：Exploitation techniques

类别：Network Troubleshooting

类别：Metasploit

Application, Cloud, and Specialized Attacks

第 3 门课程, 小时

您将学到什么

How to identify and exploit web application and database vulnerabilities including SQL injection, XSS, and privilege escalation techniques
How to assess cloud infrastructure security and exploit misconfigurations in AWS, Azure, and other cloud platforms during an authorized engagement
How to conduct social engineering simulations, and perform assessments on specialized systems including IoT devices and industrial control systems

您将获得的技能

类别：Penetration Testing

类别：Virtualization

类别：Human Factors (Security)

类别：Exploitation techniques

类别：Mobile Security

类别：Cloud Security

类别：AWS Identity and Access Management (IAM)

类别：Databases

类别：Security Testing

类别：Cloud Infrastructure

类别：SQL

类别：Cloud Platforms

类别：Mobile Development Tools

类别：Application Programming Interface (API)

类别：Azure DevOps

类别：Scripting Languages

类别：Security Strategy

类别：Cybersecurity

类别：Web Applications

类别：Vulnerability Assessments

PenTest Post-Exploitation, Reporting & Tools

第 4 门课程, 小时

您将学到什么

How to maintain access, move through a network, and cover tracks after initial system compromise using professional post-exploitation techniques
How to write clear penetration test reports with findings categorized by severity, risk-rated remediation recommendations, and executive summaries
How to use and script with the penetration testing toolkit including Metasploit, Wireshark, Burp Suite, Kali Linux, and Bash/Python automation

您将获得的技能

类别：Penetration Testing

类别：Vulnerability Scanning

类别：Python Programming

类别：Exploitation techniques

类别：Bash (Scripting Language)

类别：Metasploit

类别：Exploit development

类别：Linux

类别：Windows PowerShell

类别：Persistence

类别：Technical Writing

类别：Security Testing

类别：Security Engineering

类别：Security Requirements Analysis

类别：Applicant Tracking Systems

类别：Scripting

类别：Code Review

类别：Security Awareness

类别：Technical Documentation

类别：Technical Communication

获得职业证书

将此证书添加到您的 LinkedIn 个人资料、简历或履历中。在社交媒体和绩效考核中分享。

位教师

Michael Solomon

Total Seminars

4 门课程85 名学生

提供方

Total Seminars

人们为什么选择 Coursera 来帮助自己实现职业发展

Felipe M.

自 2018开始学习的学生

''能够按照自己的速度和节奏学习课程是一次很棒的经历。只要符合自己的时间表和心情，我就可以学习。'

Jennifer J.

自 2020开始学习的学生

''我直接将从课程中学到的概念和技能应用到一个令人兴奋的新工作项目中。'

Larry W.

自 2021开始学习的学生

''如果我的大学不提供我需要的主题课程，Coursera 便是最好的去处之一。'

Chaitanya A.

''学习不仅仅是在工作中做的更好：它远不止于此。Coursera 让我无限制地学习。'

常见问题

This course is completely online, so there’s no need to show up to a classroom in person. You can access your lectures, readings and assignments anytime and anywhere via the web or your mobile device.

Yes! To get started, click the course card that interests you and enroll. You can enroll and complete the course to earn a shareable certificate. When you subscribe to a course that is part of a Specialization, you’re automatically subscribed to the full Specialization. Visit your learner dashboard to track your progress.

Yes. In select learning programs, you can apply for financial aid or a scholarship if you can’t afford the enrollment fee. If fin aid or scholarship is available for your learning program selection, you’ll find a link to apply on the description page.