The CompTIA PenTest+ exam contains up to 85 questions with a 165-minute time limit. This intermediate-level certification validates your ability to plan, scope, and perform penetration tests. The extended time reflects the complexity of hands-on PBQs that simulate real penetration testing scenarios.
PenTest+ includes multiple-choice, drag-and-drop, and performance-based questions. PBQs are particularly important for this exam — they may require you to write exploit code snippets, analyze scan results, interpret command outputs, or determine the correct attack methodology for a given scenario.
| Domain | % of Exam | ~Questions |
|---|---|---|
| Planning & Scoping | 14% | ~12 |
| Information Gathering & Vulnerability Scanning | 22% | ~19 |
| Attacks & Exploits | 30% | ~26 |
| Reporting & Communication | 18% | ~15 |
| Tools & Code Analysis | 16% | ~14 |
| Exam | Questions | Time | Format |
|---|---|---|---|
| PenTest+ | Up to 85 | 165 min | MC + PBQ |
| CEH v12 | 125 | 240 min | Multiple Choice |
| OSCP | Practical | 24 hrs | Hands-on Lab |
| CySA+ | Up to 85 | 165 min | MC + PBQ |
Up to 85 questions in 165 minutes, including multiple-choice and performance-based questions.
750 out of 900 (approximately 83%).
PenTest+ covers tools like Nmap, Metasploit, Burp Suite, Wireshark, and various scripting languages for penetration testing.
Yes, PenTest+ is an intermediate certification requiring offensive security knowledge, while Security+ covers defensive fundamentals.
Sharpen your offensive security skills with exam-realistic practice tests.
Start Free Practice Test →