Options
From Zero to hero, a 6 year tale.
Comments
-
Options
K-9
Member Posts: 82 ■■■□□□□□□□
So glad to hear you are not giving up on this. Review those goals every week and don't be afraid to adjust the order or content.
I did a similar thing several years ago. I made a five year plan that seemed like a dream list of certs. I was actually amazed that I did hit my goals.
It works. Don't give up.
Best of luck! -
OptionsHCPS123
Member Posts: 54 ■■■□□□□□□□
Update: I live!!! Again, ok this time I'm more determine to keep to a better schedule! I'm ashamed to say it but it's taken me WAAAAAAY too long to get ready for ICND1, almost five months I want to say (almost scared to find out real date) O.o Good news is that I've finished both Odom's book and Chris's videos!!! I learned a great deal from them and had a lot reinforced to me. With nothing holding me back now (except my fears) I've scheduled my exam for Thursday. Until then I plan on bunkering down, practicing my packet tracer skills, good old port memorizing and other random facts with self made flashcards.
Definitely feeling nervous because of how long I've been studying for this, that and I've sort of become the running joke of the class with everyone wanting to crack a joke about me carrying around my book so if I fail I'm definitely going to feel really bad. Still despite my fears and insistence from other people in the class, I'm NOT going to use ****. I LIKE CCNA, I like configuring routers and learning about networking and beyond the fear of failure there's a need in me to know how good I really am at this now. It's a weird feeling to describe, but in the words of anime, "even if a good part of me is scared I'm about to fall, and even bigger part wants to see how high I can get before that moment".
Oh and in other sad news, because I waited so long to check in the forum I missed my chance to get an elearning bundle *cries in corner*. See kids, this is why you should stick to your update posts. -
OptionsHCPS123
Member Posts: 54 ■■■□□□□□□□
Update: PASSED ICND1!!!!! VICTORY! VICTORY! That's my battle cry!!!!!
I am now CCENT certified!!! I'm going to go ahead an update my posts and post a review on ICND1 in a bit, but needless to say I'm super happy and ICND2 you're next!!! -
OptionsTechand$$
Member Posts: 18 ■■□□□□□□□□
Update: PASSED ICND1!!!!! VICTORY! VICTORY! That's my battle cry!!!!!
I am now CCENT certified!!! I'm going to go ahead an update my posts and post a review on ICND1 in a bit, but needless to say I'm super happy and ICND2 you're next!!!
Congrats !!, I enjoyed reading your posts. Your plan looks solid, it took me around the same time to get all the certs i.e. 5-6 years. Just take it one at a time, and keep the momentum, eventually it will snowball into something much bigger than you have ever imagined.OSCP | CISSP | CREST CRT | CCNP | ITIL
Goal: CREST CCT | PMP
-
OptionsHCPS123
Member Posts: 54 ■■■□□□□□□□
Techand$$ = Thank you so much for the kind words and I will!!
Update: So apparently there's a limit to how far back you can edit a post O.o So I won't be able to edit my first post like I thought, instead I'm just going to post the updated goal list as they update so here we go. Oh and here's a link to my review if anyone is interested in it. http://www.techexams.net/forums/ccna-ccent/132378-review-ccent-icnd1-100-105-study-materal.html#post1142567
Sec+ = Completed
CCNENT = Completed
CCNA = Currently Studying for
CEH
CCNA: Sec
CISSP
(Place Holder)
Powershell
Bash
Python
Assembly Language
(Place holder)
eJPT
eCPPT
OSCP -
Optionsjulioiglesiasp
Member Posts: 5 ■□□□□□□□□□
I'm an OSCP since 2016, and let me advise you (with all respect):
Sec+ = Completed
CCNENT = Completed
CCNA = Currently Studying for
CEH > Don't take, I see a lot of jobs opportunities telling you something like this: "OSCP & OSCE won’t hurt your chances, CEH might."
**** From this point, I don't see why to take all these exams:
CCNA:
CISSP
eJPT
eCPPT
***** Till here.... If you ask me why I don't recommend CISSP, the answer is: If you want to me a Security Manager or CISO, or something like that, you should take CISSP, but you're looking for Pentesting, so focus in pentesting courses and learning
*******
Powershell > Pospose this to the future
Bash > Sure, and it's not that hard
Python > Sure, I recommend you SPSE from pentesteracademy, Vivek course, great course!!, but I passed the exam using the Kali scripts, and tools, and a lot of bash, when you take the PWK course, you'll learn some basis of python. But if you know programming, you'll not have troubles.
Assembly Language > Pospose this when you get the OSCP, and if you wan't to get OSCE (I'm on this right now)
Notes:
Look for OSCP reviews, and don't forget to visit, and read fuzzysecurity and g0tm1lk's blogs, specially for Windows and Linux privs. escalation.
Practice with some vulns VM like, metasploitable, de-ice, kioptrix, and vulnhub's website.
Best regards -
Optionsb0Ris
Member Posts: 27 ■□□□□□□□□□
julioiglesiasp wrote: »I'm an OSCP since 2016, and let me advise you (with all respect):
CEH > Don't take, I see a lot of jobs opportunities telling you something like this: "OSCP & OSCE won’t hurt your chances, CEH might."
**** From this point, I don't see why to take all these exams:
CCNA:
CISSP
eJPT
eCPPT
***** Till here.... If you ask me why I don't recommend CISSP, the answer is: If you want to me a Security Manager or CISO, or something like that, you should take CISSP, but you're looking for Pentesting, so focus in pentesting courses and learning *******
Notes:
Look for OSCP reviews, and don't forget to visit, and read fuzzysecurity and g0tm1lk's blogs, specially for Windows and Linux privs. escalation.
Practice with some vulns VM like, metasploitable, de-ice, kioptrix, and vulnhub's website.
I'll disagree with the CISSP thing. HC is starting their career and it may be beneficial to their career while in the military to pass the CISSP. I wouldn't underestimate what passing the cert (and a few others as listed in the original post) could help to promotion or increased responsibilities.
The CEH on the other hand I hear is a much more interesting situation. Some people hate it. Some people love it. Thats probably a personal decision. -
OptionsK-9
Member Posts: 82 ■■■□□□□□□□
HCPS123: After every certification, always look back over your list and reassess. It is ultimately your time, money, and choice. I changed my list a bit over time. Always look it over after every cert and decide for yourself.
-
OptionsTechGuru80
Member Posts: 1,539 ■■■■■■□□□□
If you are going to go red team, CCNA:Security probably isn't necessary. There is some good knowledge but honestly you will learn enough from a CCNA...a company isn't really going to have you looking at the tools covered in CCNA:Security, but they might have you look at firewall rules.julioiglesiasp wrote: »I'm an OSCP since 2016, and let me advise you (with all respect):
Sec+ = Completed
CCNENT = Completed
CCNA = Currently Studying for
CEH > Don't take, I see a lot of jobs opportunities telling you something like this: "OSCP & OSCE won’t hurt your chances, CEH might."
**** From this point, I don't see why to take all these exams:
CCNA:
CISSP
eJPT
eCPPT
***** Till here.... If you ask me why I don't recommend CISSP, the answer is: If you want to me a Security Manager or CISO, or something like that, you should take CISSP, but you're looking for Pentesting, so focus in pentesting courses and learning *******
Powershell > Pospose this to the future
Bash > Sure, and it's not that hard
Python > Sure, I recommend you SPSE from pentesteracademy, Vivek course, great course!!, but I passed the exam using the Kali scripts, and tools, and a lot of bash, when you take the PWK course, you'll learn some basis of python. But if you know programming, you'll not have troubles.
Assembly Language > Pospose this when you get the OSCP, and if you wan't to get OSCE (I'm on this right now)
Notes:
Look for OSCP reviews, and don't forget to visit, and read fuzzysecurity and g0tm1lk's blogs, specially for Windows and Linux privs. escalation.
Practice with some vulns VM like, metasploitable, de-ice, kioptrix, and vulnhub's website.
Best regards
CEH is not going to "hurt you" in any way except paying the cost of the exam / materials. CEH still serves as a good starter certification for red team because it gives you broad exposure...with that being said, be prepared to continue onto higher level certifications (GPEN, OSCP, etc.) to get the big impact.
The CISSP is a great certification to have, but especially as a junior level pen tester you probably won't need it. As you become more senior you should have the knowledge to help organizations at a deeper level, but at the junior level you are going to be trying to find technical flaws.
Prior to CEH, learn bash and powershell at the same time. These can get complex but honestly you will get to an intermediate level pretty quick. Then after going through OSCP (or maybe before) start to learn Python. After OSCP, learn C and C++ so you can start to learn the exploit development side of things...you can also learn Assembly, especially if you are going to go for OSCE.
