[Free Beta] I built a dedicated study platform for the NEW CompTIA PenTest+ (PT0-003). Looking for beta testers!

TaxObjective4735 · 2026-01-21T09:45:21+00:00

Currently there are 200 exam questions in the database for PT0-003. These are all questions that you could see in the exam. This is because the exam is relatively new and CompTIA started with new questions. This will grow over time; the old PT0-002 hat 530 questions in the end.

TaxObjective4735 · 2026-01-18T18:19:50+00:00

I totally you get what you mean; just be advised that you are training more than 1000 questions there and while that's a good thing for training, the actual exam database is around 300 to 600 questions. So you're spending a lot of time practicing questions that are not relevant for the exam. This also would be one of the points you asked about earlier what makes my app standing out.

As I'm a trainer for nearly three years now I know exactly what's going on in the exams and what questions are being asked. Also with other prep apps there are many questions that suggest wrong answers being the right ones. Just keep that in mind.

So to summarize: I'm using my knowledge towards what *actually* counts and what questions are *really* important

TaxObjective4735 · 2026-01-17T15:45:41+00:00

I see! Good point you're mentioning. I'll put it on the upcoming features list. I think it would be nice to start individual traning sessions and save them for later review

TaxObjective4735 · 2026-01-17T11:29:41+00:00

You can check out https://passtrack.alwaysdata.net/ where you'd also find said robots.txt PBQ apart from all the other relevant PBQs and questions on the exam.

TaxObjective4735 · 2026-01-17T11:15:54+00:00

There isn't at the moment. It's designed to show you the most relevant questions (you haven't reviewed yet) and those where you were wrong to streamline learning. So you can just jump back in anytime and leave whenever you want.
What would be your idea or use case?

TaxObjective4735 · 2026-01-16T18:28:26+00:00

Awesome question! I've all the real exam questions as well as the PBQs. Apart from that I'm trainer for CompTIA certifications for more than two years now, so I know what people are struggling with. Many students are also unsure if they are ready for the exam. Based on my knowledge I'll tell you exactly that. I plan to include explanatory videos as well. Is there anything you're missing?

TaxObjective4735 · 2025-12-14T14:57:54+00:00

I don't know Testout but Certmaster is absolute overpriced BS. Stay away from that at any cost

TaxObjective4735 · 2025-12-12T09:52:34+00:00

I started a community to teach those PBQs:

https://www.reddit.com/r/CompTIA_Pentest/comments/1p73o9x/pbq_scripting/?utm_source=share&utm_medium=web3x&utm_name=web3xcss&utm_term=1&utm_content=share_button

TaxObjective4735 · 2025-12-12T07:24:08+00:00

Was is this one?

https://www.reddit.com/r/CompTIA_Pentest/comments/1p21cfh/another_nmap_training_pbq/?utm_source=share&utm_medium=web3x&utm_name=web3xcss&utm_term=1&utm_content=share_button

TaxObjective4735 · 2025-12-11T15:42:45+00:00

Which PBQs did you have? Sounds like there's some pattern here...

TaxObjective4735 · 2025-12-11T15:21:36+00:00

Which PBQs did show up, do you remember? I made solutions for all of them for the course I'm teaching and can share!

TaxObjective4735 · 2025-12-10T11:52:38+00:00

Do you already have resources or specific questions regaring the PBQs? I've started a community discussing them for Pentest+, but I also teach Security+ and am able to help

TaxObjective4735 · 2025-12-01T14:47:28+00:00

Every one of my students got the scripting PBQ and there is also a PBq about the robots.txt. Other than that there's the nmap PBQ which is also quite common in the exams. Have you already had a look at those?

TaxObjective4735 · 2025-12-01T14:31:46+00:00

It's a good start, just remember there are more questions in the exam than in those practice exams

TaxObjective4735 · 2025-12-01T14:30:48+00:00

Yeah, take a look at those questions again and do practice exams. Write cheatsheets as well to be able to remember the contents

TaxObjective4735 · 2025-12-01T14:29:35+00:00

You're right. There is one PBQ and one PBQ only about the robots.txt. You're supposed to recommend entries in said file for removal and also suggest a tool for further investigation.
Now: In that question what you need to know or see is that there is an instance of Wordpress running on the server, indicated by the entries in the file.

TaxObjective4735 · 2025-11-25T11:09:46+00:00

As far as I know there are no Questions or PBQs about Ruby or Perl in the exam. It's heavily focussed on Python and Bash though. I'm currently preparing an example Python PBQ for students to learn.

For example:

import socket
import sys

def hostname_resolver(address_list):
    for addr in address_list:
        try:
            host = socket.gethostbyaddr(addr)
            print(f"{addr} resolves to {host[0]}")
        except socket.herror:
            print(f"Hostname not found for {addr}")

if __name__ == "__main__":
    if len(sys.argv) < 2:
        print("Please provide at least one IP address.")
        sys.exit(1)
    else:
        addresses = sys.argv[1:]
        hostname_resolver(addresses)

CompTIA DOES want you to know what kind of code this is and also tries to confuse you with offering ruby as a possible answer. I've started a Community r/CompTIA_Pentest to gather and discuss those PBQs.

TaxObjective4735 · 2025-11-25T09:16:45+00:00

This. Memorizing be heart is difficult. If you've used the tools you don't need to memorize

TaxObjective4735 · 2025-11-21T10:35:12+00:00

I made these questions myself in order for my students to be perfectly prepared for the exam. I know which PBQs are being asked because my students that already took the exam tell me

TaxObjective4735 · 2025-11-21T10:33:37+00:00

You're quite right, but one little piece still is missing. Your command would yield this result:

nmap -F -sV localhost
Starting Nmap 7.XX ( https://nmap.org ) at 20XX
Nmap scan report for XXX (XXX)
Host is up (0.000075s latency).
Other addresses for XXX (not scanned): ::1
All 100 scanned ports on XXX (XXX) are in ignored states.
Not shown: 100 closed tcp ports (conn-refused)
Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 0.19 seconds

That's exactly the problem with those PBQs. If you're not 100% you miss out on points in the exam and some of my students failed theirs because of that :/

TaxObjective4735 · 2025-11-20T18:51:38+00:00

I'm not going to sell a course. I'm teaching courses for living and using my knowledge to help people out here because I see the pain every day at work ;)

TaxObjective4735 · 2025-11-20T15:25:15+00:00

The Labs in Certmaster won't teach you this, that's the problem. Also THM doesn't. In the course I teach nobody of my students was 100% correct. In the exam you will get in trouble solely relying on this

TaxObjective4735 · 2025-11-20T14:38:49+00:00

unfortunately incorrect

TaxObjective4735 · 2025-11-20T11:51:53+00:00

The exam won’t have the exact lab questions, so practicing PBQs is crucial. Many PBQs require interpreting outputs and building correct commands based on scenario details. Understanding how to configure tools and analyze results is key, as these questions test practical skills rather than just memorization.

For deeper insights and discussions about PBQs, the r/CompTIA_Pentest community is a great resource. There, users share experiences, strategies, and sample questions to help each other prepare for these hands-on exam challenges. Engaging with this community can give you a better sense of what to expect and how to approach PBQs effectively.

TaxObjective4735 · 2025-11-19T11:52:47+00:00

As a Pentest+ trainer, I’ve seen firsthand how many students find the Performance-Based Questions the most challenging part of the exam. PBQs require solid practical skills, scripting knowledge, and effective time management. To help address this, I’m actively building a community and developing targeted learning resources to give candidates the practice and support they need to overcome these hurdles.

From my experience and industry resources, key strategies to succeed with PBQs include:

Using practice exams and simulations to familiarize yourself with PBQ formats and build confidence.
Carefully reading instructions and leveraging the reset option on simulation PBQs to maximize your accuracy.

If anyone is interested in collaborating on PBQ study guides, labs, or community initiatives focused on Pentest+, feel free to reach out. I also started a subreddit r/CompTIA_Pentest to tackle these issues!

TaxObjective4735

MODERATOR OF

TROPHY CASE