Search
-
What after OSCP to pentests?
Hi, #1 I started job as pentester and at beginning I made OSCP without problems (whole lab 50 hosts rooted in 1mo and exam done in 9h). This certificate was also my first certificate. So, what now is better and need more skills in pentests? I am interested in infrastructure/websites only because this are 2 main targets for… -
Re: What after OSCP to pentests?
If I were you I would look in to eLearnSecurity's Web Application Pentesting and Web Application Pentesting Extreme courses. https://www.elearnsecurity.com/ Or, there is also Offensive Security's OSCE, it seems like a logical progression. For books you could try the Web Application Hackers Handbook. -
Re: What after OSCP to pentests?
Exploits yes, C no. Really OSCP is easy, I made it after few mo that I was pentester like 4-5mo, don't remember :). It is like time machine, 90% hosts is same like 10-15y ago, so nothing special :). But this security+ can be made online? What book exactly :)? From that what I know there is needed to learn about CEH because… -
Re: What after OSCP to pentests?
BTW guys, what is your experience with schools on recruitment? I have only Bachelor of Engineering in Computer Science, so no master since this is waste of time to study there in Poland, I will not learn anything useful, only some stupid knowledge like Novell Netware (so because of this nothing about Windows Server or… -
Re: What after OSCP to pentests?
Sorry, I mean only that almost noone use this system anymore, I know that was used some years ago and still is somewhere because of this. But what I mean learning today Novell and not Windows Server/Linux is weird... Beware because this is only around 1/10 what knowledge is needed to pass exam :D... EWPT is too easy for… -
Re: What after OSCP to pentests?
I think about do in next year (or start in this year) - gwapt (employer will pay because for me is impossible to do this with own money since this is price like for my 5y old car from 'C' segment lol), ewptx, ecppt and then (2017 or later) maybe OSCE but I am very lame in RE, so I still think about skip OSCE. CISSP maybe… -
Re: What after OSCP to pentests?
"another *****" :)? I started when I was teenager 15y ago, and for this time it was just hobby and then I started as intern in world #200 website as admin and I was hired as full time admin in half of intern period. OSCP is just infrastructure, I same way learned OWASP and I done a lot of bug bounty and found few 0days :).… -
Re: What after OSCP to pentests?
@Bodanel: you have typo in certificate name probably "eCPPT" :), eCPPT is nice? I think about following flow: So probably in next year 2-3 certificates :). To be honest, I want only take this to have some Linux cert, I am Debian Maintainer/consultant already for some few years :). But anyway still RedHat is not Debian, so…
8 results