Software development
Artificial Intelligence
Cloud
View all courses
Learn
Connect
Blog
Resource hub
Featured resource
2025 Tech Upskilling Playbook
Tech Upskilling Playbook

Build future-ready tech teams and hit key business milestones with seven proven plays from industry leaders.

Check it out
  • Learning Path
    • Libraries: This path is only available in the libraries listed. To access this path, purchase a license for the corresponding library.
  • Security
    •

Pen Testing

7 Courses
4 Labs
11 Hours
Skill IQ

## This path covers the knowledge and skills required to operate as a Pen Tester.

Additionally, the skills covered directly align to the following CSWF, DCWF and Industry Roles:

**Workforce Framework for Cybersecurity (NICE Framework) & DoD Cyber Workforce Framework Roles:** - System Testing and Evaluation Specialist (SP-TST-001) - Vulnerability Assessment Analyst (PR-VAM-001)

**Industry Job Roles:** - Penetration Tester - Offensive Security Specialist - Vulnerability Analyst - Application Security Analyst

This path will cover the essential tasks of pen testing, walking through each phase as if you are shadowing a live pen test. The scenario will cover a full network pen test, aligning to MITRE ATT&CK tactics and techniques. In addition, there are more specific and targeted types of attacks that a pen tester should know and be aware of, depending on the environment. Don't miss the specialized courses diving into each of these types of attack.

Get started
Content in this path
Pen Testing Essentials

Great ready to learn the concepts and core skills of pen testing! Next, gain some hands-on experience learning tools and the phases of a pen test with our labs!

Course
Pen Testing: Planning, Scoping, and Recon
  • by Alexander Tushinsky
  • 1h 13m
  • Oct 10, 2022
Course
Pen Testing: Network Initial Access
  • by Matthew Lloyd Davies
  • 38m
  • Jul 16, 2025
Course
Pen Testing: Reporting
  • by Gavin Johnson-Lynn
  • 1h 6m
  • Jun 14, 2022
Specialized Attacks

Already know the basics of pen testing? Expand your skillset in these advanced courses that focus on more specific and targeted types of attacks!

Course
Specialized Attacks: Wireless
  • by Matthew Lloyd Davies
  • 1h 7m
  • Oct 21, 2022
Course
Specialized Attacks: OT and ICS
  • by Matthew Lloyd Davies
  • 1h 12m
  • Apr 14, 2022
Course
Specialized Attacks: Hardware Product Testing
  • by Matthew Lloyd Davies
  • 53m
  • Jul 27, 2022
Pen Testing Labs

Get hands-on experience with pen testing labs!

Lab
Enumeration: Build a Target List
  • by Matthew Lloyd Davies
  • 1h 15m
  • Jul 30, 2025
Lab
Scanning: Report and Prioritize Vulnerabilities
  • by Matthew Lloyd Davies
  • 1h 10m
  • Jul 30, 2025
Lab
Initial Access: Show Impact of Exploitation
  • by Matthew Lloyd Davies
  • 1h 15m
  • Aug 04, 2025
Lab
Lateral Movement: Achieve Key Objectives
  • by Matthew Lloyd Davies
  • 45m
  • Aug 04, 2025
Course
Getting Started in the Lab Environment
  • by Aaron Rosenmund
  • 6m
  • Oct 07, 2021
Try this learning path for free
Access this learning path and other top-rated tech content with a free trial.
Free individual trial
Free team trial
What You'll Learn
Prerequisites
  • Additionally, the skills covered directly align to the following CSWF, DCWF and Industry Roles:
  • Workforce Framework for Cybersecurity (NICE Framework) & DoD Cyber Workforce Framework Roles:
  • System Testing and Evaluation Specialist (SP-TST-001)
  • Vulnerability Assessment Analyst (PR-VAM-001)
  • Industry Job Roles:
  • Penetration Tester
  • Offensive Security Specialist
  • Vulnerability Analyst
  • Application Security Analyst
  • This path will cover the essential tasks of pen testing, walking through each phase as if you are shadowing a live pen test. The scenario will cover a full network pen test, aligning to MITRE ATT&CK tactics and techniques.
  • In addition, there are more specific and targeted types of attacks that a pen tester should know and be aware of, depending on the environment. Don't miss the specialized courses diving into each of these types of attack.
Related topics
  • Vulnerability Assessment
  • Security Operations
  • Offensive Security
  • Ethical Hacking
Not sure where to start?
With over 500 assessments to choose from, you can see where your skills stand and receive adaptive learning recommendations to fill knowledge gaps in as little as 10 minutes.
Learn more
Learn with the best
Alexander Tushinsky
Alexander Tushinsky
Alex has spent the past 30+ years working as a software developer, application architect, cybersecurity professional, and technical trainer. He is a lifelong learner and holds over 20 active certifications in IT. Alex is a Microsoft Certified Trainer and enjoys sharing his knowledge with others. He has taught at Rutgers University, Bergen Community College, County College of Morris, College of Southern Nevada, and UNLV. He holds a BS in Software Development and a Masters in Cybersecurity from We...
Matthew Lloyd Davies
Matthew Lloyd Davies
Matt is a cyber security author and researcher here at Pluralsight. A certified penetration tester and incident handler, he created Pluralsight's CompTIA Pentest+ Specialized Attacks courses as well our courses on wireless, ICS/OT and hardware hacking. Matt has also helped to build our security labs portfolio; labs that help you get hands-on to understand the threats and vulnerabilities your organization faces today. With a background in Chemical Engineering, Matt's focus is on the security ...
Gavin Johnson-Lynn
Gavin Johnson-Lynn
Gavin has 20 years’ experience writing software in regulated environments and for global organisations. The last five years of his development career were spent with a focus on security, becoming the security lead for a significant payments project at a FTSE 100 company. He has experience with languages from COBOL to .Net and many languages in between. Gavin's experience of secure development revealed a passion for security, leading him to become a speaker and blogger on the subject. He has held...
Aaron Rosenmund
Aaron Rosenmund
Aaron M. Rosenmund is a cyber security operations subject matter expert, with a background in federal and business defensive and offensive cyber operations and system automation. Leveraging his administration and automation experience, Aaron actively contributes to multiple open and closed source security operation platform projects and continues to create tools and content to benefit the community. As an educator & cyber security researcher at Pluralsight, he is focused on advancing cyber secur...

Get started with Pluralsight

View individual plans View team plans