HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 50 guests and 4 members online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow eCPPT - eLearnSecurity Certified Professional Penetration Testerarrow eCPPT certification and programming skills
EH-Net
May 20, 2013, 01:56:28 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: eCPPT certification and programming skills  (Read 5779 times)
0 Members and 1 Guest are viewing this topic.
misterex2
Newbie
*
Offline Offline

Posts: 1


View Profile
« on: May 24, 2011, 01:46:49 AM »
Hello everyone,
I am new to this forum.
First of all,I would like to brief you about me.I am a CISA  with 7 years of working experience:4 in Information security and audit and 3 as a windows support and network administrator.
I should add that I have  very basic programming skills.
Lately,I found out about eCPPT but  noticed that passing and understanding the course requires some development background.
Such fact made me think twice before applying to the course or to OSCP.
Therefore,I would really appreciate to hear or to know the opinion of someone who had similar experience.
What should I do in case i decided to take the ecppt?What are the required programming skills?what books should I read before applying to eCPPT?

NB:I am currently preparing myself to take the CEH.
Thanks for your replies

Regards
Logged
Armando
Jr. Member
**
Offline Offline

Posts: 83


Founder of eLearnSecurity


View Profile WWW
« Reply #1 on: May 25, 2011, 08:37:59 AM »
Of course I'm biased but I'm also the most informed  Grin

Our course requires a basic understanding of C++/ASM as in some modules (Buffer overflow, Shellcoding and Rootkit coding) there's absolutely need for them. Now,the question is: what level of understanding is required?

If you don't want to code your own exploits, or you don't want to be too hardcore on system security, you would only need to "read" the code and understand what's going on. I'm sure you would benefit from it anyway.
I see plenty of pentesters today not having any basics of C++/ASM and working in the field.

Another language that you may encounter during the course is PHP. We offer snippets of code to explain vulnerabilities. Once again, "reading" is enough.

To pass the certification, it is not required any programming skill.

P.S. From what I see 50% of our students never coded C++ but they find the Buffer overflow and Shellcoding modules "enlightening" to say the least.

Hope this clarifies your concern
Logged
Founder and Lead Author of eLearnSecurity
Training for Penetration Testers
http://www.elearnsecurity.com

Founder of HACK.ME Free community based web app security virtual labs
https://hack.me
Equix3n-
Sr. Member
****
Offline Offline

Posts: 386



View Profile
« Reply #2 on: May 28, 2011, 12:39:15 AM »
Being an eCPPT I completely agree with Armando that you don't need to be a programmer to complete the course but you still should be able to understand the code. Most of the php required for the course can be easily learned from w3schools.com http://www.w3schools.com/php/default.asp

But, to get the most out of the course, I would suggest that you learn enough php to be able to set up a basic website, prior to joining the course. Learning vulnerabilities without understanding the language gives you an abstract view of that vulnerability. If your objective of joining the course is to LEARN and not just to earn one more certification than I would definitely suggest learning enough PHP and C (Focus on pointers) before starting web application and system security modules.

You can even start the course and learn PHP and C alongside. In that case I would suggest starting out with network security module first as it doesn't require ant programming skills and learn PHP or C side by side. Then, once you're comfortable with PHP or C, you can jump to web application or system security modules.

Quote
What should I do in case i decided to take the ecppt?What are the required programming skills?
I didn't know any PHP when I passed the certificate exam.

Quote
what books should I read before applying to eCPPT?
'The Web Application Hacker's Handbook' will be a good companion.
Other books I read/consulted:
Counter Hack Reloaded by Ed Skoudis.
The Shellcoder's Handbook.
Logged
rabray
Newbie
*
Offline Offline

Posts: 38


View Profile
« Reply #3 on: June 12, 2011, 05:49:36 PM »
From the point of view about the books. I would say that you also read these while you study, its what I did and found them useful for areas at the time I felt a bit weak on.

I also recommend using the forums, there is quite a bit of useful information and questions/reply that I also learned things from and really helped me to develop a better understanding.
Logged
---------------------------------------
CEH, eCPPT, MCT, MCSA, MCDST, A+, Net+

Never been the flamin type.
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.07 seconds with 24 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.