HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 38 guests online
 
Advertisement

You are here: Home arrow Resourcesarrow Career Centralarrow Pen Testing Certifications Help
EH-Net
May 22, 2013, 11:12:35 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Pen Testing Certifications Help  (Read 10962 times)
0 Members and 1 Guest are viewing this topic.
millwalll
Guest
« on: February 15, 2011, 12:57:14 PM »
Hi EH Members,

I need some help. I am really interested in Pen testing and would love to get a job as Junior pen tester. At the moment not many companies are willing to take on juniors and train them up so I am trying my best to make my self a better investment for a company and paying for my own training.

So far I am working on my OSWP and also a student with the Hackingdojo I really want to know what else I can do to make myself a better investment for a company. I don't mind paying and getting certificates however as I only work part time I cant always afford to pay for course outright.

What certificates do you think would help me stand out? Are there any that are relative cheap like $500

Thanks a lot
Jamie
P.S if anyone want to give me a full time job(UK) so i can afford to pay for more expensive course let me know: P
Logged
xXxKrisxXx
Hero Member
*****
Offline Offline

Posts: 512



View Profile
« Reply #1 on: February 15, 2011, 01:31:08 PM »
hi millwall,

Quote
What certificates do you think would help me stand out? Are there any that are relative cheap like $500

You may want to check this thread to see certificates that would help you stand out:
http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/topic,6630.msg35589/topicseen,1/

As far as affordable training with certificate options, hackingdojo is affordable! There's also eLearnSecurity's Penetration Tester Pro course. You can click here to redeem a 5% discount code for ethicalhacker.net members. Offensive-Security's Penetration Testing with Backtrack is also an affordable and terrific course. I do not know your background but if you were going to attempt this course, be sure to get the 60 day package as oppose to the 30. The labs have grown simply too large to make the 30 day package enough fun.

Other companies offering affordable training  (courses under the $500 price range) would be LearnSecurityOnline. Their online-training courses don't currently offer any certifications, but it's another great resource.

What ever route you choose, I hope you excel!

Goodluck!

-Kris
Logged
eCPPT, GCIH, OSCP, OSWP
millwalll
Guest
« Reply #2 on: February 15, 2011, 02:55:21 PM »
Thanks for that information I was thinking about Pen testing with backtrack. Do you know if it taught by video or is it mainly text based?
Logged
xXxKrisxXx
Hero Member
*****
Offline Offline

Posts: 512



View Profile
« Reply #3 on: February 15, 2011, 03:23:37 PM »
The course comes with over 8 hours of video along with an accompanying PDF file which is well over 300 pages. The pdf contains the content of the videos, lab exercises, extra-links for resources, as well as extra-mile exercises.

I wouldn't recommend it for the beginner though - I know I like to beef up the course and I'm quick to tell people, "take every course from offsec that you can", but I don't want to set you up for failure! If your new to the pentesting scene I wouldn't recommend going for it. Again, I don't know your background - you did ask for affordable courses; You can't beat the knowledge you learn in this course for the price.

If you have more questions about it feel free to ask, there's many OSCP's on this board. Glad I could help!

-Kris
« Last Edit: February 15, 2011, 03:25:25 PM by xXxKrisxXx » Logged
eCPPT, GCIH, OSCP, OSWP
cd1zz
Hero Member
*****
Offline Offline

Posts: 561


View Profile WWW
« Reply #4 on: February 15, 2011, 04:38:10 PM »
I agree -- if you're just starting, the OSCP might scare the living crap out of you. Start a little lower and then hit the OSCP.
Logged
OSCE | OSCP | GXPN | OSWP | CISSP
http://www.pwnag3.com
http://www.networkadminsecrets.com
millwalll
Guest
« Reply #5 on: February 15, 2011, 05:53:46 PM »
Thanks well bit about me. I have a degree in Information Technology most of my Hacking comes from reading books and watching online content. I would say I know what most of the tools are and what they are used for. I have played with nmap, netcat, hydra, JTR , and Aircrack-ng I have also tried some SQL injections and some cross site scripting. I have also read Professional pen testing so I would say my experience is a bit mixed.
Logged
cd1zz
Hero Member
*****
Offline Offline

Posts: 561


View Profile WWW
« Reply #6 on: February 15, 2011, 07:23:02 PM »
Read KrisX's review and here is my review:

http://networkadminsecrets.blogspot.com/2010/12/offensive-security-certified.html
Logged
OSCE | OSCP | GXPN | OSWP | CISSP
http://www.pwnag3.com
http://www.networkadminsecrets.com
T_Bone
Full Member
***
Offline Offline

Posts: 199


View Profile
« Reply #7 on: February 16, 2011, 03:57:58 AM »
Are you currently working in IT on Helpdesk, Sys Admin, Developer?
Logged
H1t M0nk3y
Hero Member
*****
Offline Offline

Posts: 864



View Profile
« Reply #8 on: February 16, 2011, 07:13:09 AM »
@millwalll: Based on your last post, I would go for OSCP.

If you can do basic SQLi on your own (but really if you DARE trying these things on your own), you can take the course.
Logged
OSCP, GPEN, GWAPT, GSEC, CEH, CISSP
millwalll
Guest
« Reply #9 on: February 16, 2011, 03:23:22 PM »
Hi

Thanks for all the reply's I am really considering it.
I am not currently working in IT I am trying to find a job as we speak. I have worked as PC Technician for around 3 years mainly fixing computers, Virus removals etc.
I also have gone through many Video including the Network +and ECH what I really lacks is hands on experience. What is very frustrating as I know given the chance I would learn loads as I tent to pick things up quicker when doing them.

Thanks Jamie
Logged
cd1zz
Hero Member
*****
Offline Offline

Posts: 561


View Profile WWW
« Reply #10 on: February 16, 2011, 03:34:39 PM »
Do the OSCP and buy lots of lab time if you can. That's a great way to get hands on experience. They've got a pretty interesting lab and you can be exposed to a wide range of vulnerabilities. AND, all the boxes on the lab can be popped.

After you go through the course you can build your own lab of VMs to keep practicing. Good luck!
Logged
OSCE | OSCP | GXPN | OSWP | CISSP
http://www.pwnag3.com
http://www.networkadminsecrets.com
millwalll
Guest
« Reply #11 on: February 17, 2011, 08:12:21 AM »
Thanks for all this information it been really helpful in making me decide my next move Smiley
Logged
anoninde
Guest
« Reply #12 on: February 17, 2011, 12:41:20 PM »
I'm not sure how much this helps, but I actually had no certificates coming into this industry. I have experience initially coding during HS then programming through college. Most of the Pentesters i work with, including myself, have customized attack frameworks, with highly customized tool sets. When you can code your own backdoor, it cuts the need for you to rely on a third party to support your need as a tester.

I would look into C or C++ programing, it certainly cannot hurt. We use Core Impact, Canvas and often times Metasploit for shell management, but our backdoors simply tie into these COTs frameworks. I would also say to go through Metasploit Unleashed, it's free, comprehensive, and will help you greatly with the fundamentals....

My two cents for what they are worth.
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.077 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Free Business and Tech Magazines and eBooks

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.