There are also loads on this that relate to web, networking and pretty much most things.

http://vulnhub.com/

also most will give you information using -h or --help if its a command line too.

I think what he is trying to say is if he pays for PRO V2 it has web contents in the course. That if he does the web course it will contain some of the same material so his paying for the material twice. I think that's is the point he is trying to make.

So what I think he is getting at is he wants a discount on PRO v2 as he not gonna to do the web module in that and just do the new web course. So does not see why he should pay full price PRO v2 when he gonna miss a module out.

I think that what he is trying to say but please correct me if I am wrong.

I am not aware of any tool that can do this. I guess Nessus would pick up if the issue of default password. I am not sure how you could detect a weak password unless you brute forced the login and found the password to be 12345 or another easy to guess password.

You should be able to write a simple python script to do this. One thing that might be an issue with is how you detect a weak password and then replace it. As if you want the hole process to be automated you would need to store the password in the script in plaintext.

I am not the best programmer in the world so maybe other might have way around this.

I sometimes use password safe.

thanks m0wgli I was talking about all his mega primers videos

Cool thanks for the info Armando I look forward to seeing the details on Monday.

I may do the course once gold is out the way tho as I got free upgrade since I don't want be in situation where I trying to do both at once.

Glad you find it useful since this been so popular I plan on doing another tutorial soon not sure what on tho.

Cool video any new on when they can be downloaded as it be awesome to download put on my nexus and watch them on train to work.

Well done how did you find the exam ?

Cool thanks for the update can you just confirm this tho as impelse has asked about upgrade price but from what I understand there was no current web certificate.

So are you saying members who have done the Pro course will get a discount to the web application one ? If this is correct how long will that offer last ?

Thanks

hmm I would say learn SQL you may not have time but being pen tester I think is about being professional. Trying find a tool that you can just run and hope it works is just so wrong. You going to run a tools that you don't really understand how it works and what is it doing. How do you know it wont break the database.

I not saying you have to be a complete expert at it but least understand the basic behind SQL I don't think learning the basic takes that much time.

I also not sure any of the De-ice disk have SQL injection in them
I would not recommend hitting you mates website

If you want to try SQL DVWA has some in and Webgoat does they are pretty basic to find.

I would agree with MaXE use SQLMAP but this does mean you have to understand SQL its not a click click win tool.

Thanks a lot this has given me some ideas. I get sent onsite a lot and one company are extremely bad with security despite my warnings. So I was trying think other ways to get it into their head certain things they do should just not done.

Hi aiBreeze,

I am very much like you and don't really enjoy reading much or get easy distracted when reading. I find the best way to learn is to get hands on and do it yourself make mistake and try things. What I done was setup a lab and then watched videos then try implement what I see in the videos then try other stuff and really understand why what I done worked or didn't work.

There are loads great video online that will tech you just about everything you want to know. I also agree sometimes you do need to do a bit of reading but I find video a better way to learn as I can watch it over and over it just sinks in more.

You may want take look at
securitytube
thenewboston
youutube - lots CCNA stuff on that

You also have things like CBT nuggets and there are not lots companies that do like intense training depending on if you want to spend any money.

The course does look good. I am hoping I can do this depending on how much it is for elearn students, how long that offer last and if you can pay in installment again.

Does anyone know with this course if you get unlimited lab time ? or does it work same the other lab where you get like 30 hours ?