Domain 2: Information Gathering and Vulnerability Scanning

CompTIA PenTest+ (PT0-002) · this domain is approximately 22.0% of the exam · 0 practice questions.

Information Gathering and Vulnerability Scanning covers the reconnaissance and enumeration techniques used to map an attack surface before exploitation is attempted. This domain includes passive reconnaissance such as open-source intelligence gathering, active scanning with port and service enumeration tools, and automated vulnerability scanning to identify weaknesses. The PT0-002 exam expects candidates to understand the difference between passive and active information gathering, interpret scan output, and select appropriate tools and techniques for each phase of reconnaissance.

Practice questions from this domain

The full CompTIA PenTest+ (PT0-002) bank includes 510 questions across every domain, each with a verified answer and a written explanation.