HA I got it with a little research and help from the rockyou.txt wordlist I was able to crack it! Come to find out the password had numbers in it while the other were standard words! This is why i love this field lol

Thanks for your replies!

I'd rather not have customer data online. But the command I am using is john --wordlist=english.txt /root/(file name). From my understanding that should give me everything in the English dictionary. Now it did crack 3 passwords that are in the same file. I did notice none of them have numbers in them. Does john by default use numbers with a brute force attack? Or should I download a word list that includes numbers? If so do you have any recommendations on word list?

what are the steps one would take to crack a hash that starts with $1$. With some research i have found it is a salted MD5 but when i run john the ripper against the hash it finds nothing. I know the password for the specified hash but I am unable to actually get John to work. can someone explain the steps?

Thanks in advance.

Thanks Guy's ! I get the scripting part i'm working on my CPT practical and its a pain in the rear not having any experience.

I took the InfoSec Institure boot camp for ethical hacking and passed my C|EH ! Now i am finishing the practical part of the CPT and then on to some more advanced pen testing. Any recommendations on OSCP or eLearn Security eCPPT? Maybe even another beginner course? I did learn during the class that I need to better my programming and scripting knolwege should i start with C or Python ?

Thanks!

ajohson is correct Offensive Security and eLearn Security are both great places Hacking Dojo also has an online hacking lab environment. I just took the class from InfoSec institute for the Ethical Hacking it gives you CPT and C|EH I passed the C|EH and am currently finishing the pratical for the CPT. If you can afford to take a call online that's not a bad one at all. Other wise keep reading and welcome!

If you are in western NY then your entry level position will rage around the $12-14 maybe more. I am from the Adirondack region and entry level around here is at about $15-$17 so I can only assume the bigger that region the higher the salary. I took that track I went to out local community college and got my AAS in Computer Information Systems. I'm not moving into the security field. I have a few contacts in that area if you need an internship. PM me any time with questions.

That's Awesome!

Thanks. I will try to do review of the live course once completed.

WOW Amazing review I thought I was excited to attend before after reading through that I'm extremely excited! That was a very well written review thanks for the link! I like that fact that you suggest this for beginners because that's exactly where I am entry into the security field with plenty of knowledge in operating systems and networking. I admit i could use more shell experience but since I have started researching and reading I've gotten pretty good at it.

Hello! I am just wondering what everyone's thoughts on the IACRB CPT certification are. I'm curious because this is one of the certifications included in the Infosec Institute CEH bootcamp that my company is sending me to in May.

Thanks!

I don't know that he is supporting it as much as stating that it can be a good starting point for someone. From the reading I have done on here and lookin online I decided to go with CEH and then OSCP to give me a foundation as well as "brand recognition". At least having a CEH will get you interviews and you can learn from them weather you get the job or not.

Virtual box is a good virtual platform. There is also proxmox ve if you have the hardware to support it. I brought it online last night in my home network it allows you to watch performance and other aspects of the environment and its Debian based so it's free.

http://www.proxmox.com/products/proxmox-ve

Also everyone on here is very helpful. I've had a couple questions answered on here already!

1. Are you on-board with what we may have to do?

I'm still new but yea im on board.

2. How extensively do you use PMs through our forums?

Haven't used it yet.

3. who's interested in Blogging for EH-Net?

I'm still new to the field but I would be willing to

4. Who's willing to help test?

Sure

5. Who's willing to possibily help moderate the forums?

Don't think i've been here long enough
6. Anyone willing to lend a hand who has expertise in PHP, MySQL, design?

No Experience sorry :/

7. Should we implement OpenID, login with Twitter?

I haven't used OpenID at all so I cant comment on this.

Welcome  souljah !

My advice to you is make sure you are happy in what you are doing. As Jamie.R said we all need money to pay bills but the way I look at it is I don't need all the frills that come with extra stress. I would much rather get up and look forward to going to work and doing something I love and making less than never wanting yo get out of bed. I've been in the IT field for about 7 years now and just starting to move into security, As Jaime.R stated I have found that everyday there is something more to learn from scripting to exploit writing.

In the end you need to do what you think is in the best interest for you and your family to be happy.