The Ethical Hacker Network - Beginning in ethical Hacking / pentest

terro

Newbie

Offline

Posts: 3

Beginning in ethical Hacking / pentest

« on: May 23, 2011, 03:09:50 PM »

Hi All ,

First of all, i'm introducing myself : young IT enginneer working as developer for the moment and want to switch to security/pentest.

Thanks to this (wonderful) forum i discovered more certification in 1h than in the last month. Cheesy

And as far as i red it seems that this the eSCPPT is a good choice to begin. (and maybe continu with ceh or PWB).

And i was wondering if a newbe could achieve the eSCPPT ...? And waht kind of amount of work is needed to finish it? I don't have much time
Actually i'm reading hacking exposed - gray hat hacking (quite a good book!) and MISC, have some skills (various level ) in approximatively all languages, mid-skill in network, and know few trick like XSS, parameters poisonning, SQL injection etc... (that was for the background)

If any of you have advice or a better suggestion on how begin in the career i'll take it

Btw, i'd like to say that this forum is GREAT , i bet i'm here for a while!


« Last Edit: May 23, 2011, 03:21:25 PM by terro »	Logged

xXxKrisxXx

Hero Member

Offline

Posts: 512

Re: Beginning in ethical Hacking / pentest

« Reply #1 on: May 23, 2011, 03:39:24 PM »

Hey terro,

Welcome to the forums!

I think it's definitely possible depending on how much time and effort you put into it! The course is aimed for audiences with 0-3 years penetration testing experience. Your given a good amount of time to go through the course material before you go for the certification challenge. I think it's good you have the development background - it helps in the field. The certification challenge is a web-application pen-test and even if you didn't have a few tricks up your sleeve like you mentioned, the Web-App Section in the course is explained in detail enough to where you'd be able to get there.

Your going to learn a lot of cool stuff, especially if your new. The hardest part of the challenge was the reporting! The Penetration Testing Reports thread will come in very handy here. eLearnSecurity has even recently released a Web Application Security Lab for their students and if you manage to complete those, you'll feel prepared for the exam. Incase your ready to endure some more web-app hacking, test your skills against the Vulnerable Web-Applications here.

There's tons of resources in the course including a forum area, and personal e-mailing (Armando e-mails back in a very timely manner). Plus there's our board here where a few eCPPT certified folks + current eLS students participate and were glad to pitch in our 2 cents.

p.s - don't forget the 5% discount ethicalhacker.net members get here

Kris


« Last Edit: May 23, 2011, 03:49:52 PM by xXxKrisxXx »	Logged

eCPPT, GCIH, OSCP, OSWP

lorddicranius

Sr. Member

Offline

Posts: 447

Re: Beginning in ethical Hacking / pentest

« Reply #2 on: May 23, 2011, 03:45:12 PM »

First off, welcome to the forum

I haven't taken a course from eLearnSecurity personally, but from what I've read it's a great course. eLearnSecurity actually just came out with a Student course that teaches the basic knowledge of what you'll build upon in the Pro course. There's a form there on their homepage (http://www.elearnsecurity.com/index.php) that'll allow you to get a free demo of one of their lessons. Check it out and see what you think!

You'll see Armando (founder of eLearnSecurity) poke his head into the forums here also.

**EDIT**
Looks like I was typing up my reply at the same time Kris was :-P


	Logged

GSEC, eCPPT, Sec+

terro

Newbie

Offline

Posts: 3

Re: Beginning in ethical Hacking / pentest

« Reply #3 on: May 25, 2011, 06:46:36 AM »

Thank you for your answer !

I think that i'll take a try so. It looks interesting and a good entry point to the world of pentest.

Do you think that i shall begin with student version or just go for the pro?


	Logged

Armando

Jr. Member

Offline

Posts: 83

Founder of eLearnSecurity

Re: Beginning in ethical Hacking / pentest

« Reply #4 on: May 25, 2011, 08:30:44 AM »

I've heard someone say my name Cheesy

And here I am
If you are unsure about going for Students or for Professional I'll be glad to help with the choice if you provide more information on your background.

As I may read from your post you might want to check our our Student course.
If you have never done pentesting for hobby/work it's your choice.

Also, I'm about to mail all of our students with this offer:
If you signup for the Professional course within May 31st, you will get 2 WEEKS free access to our Web app hacking labs.

Now you'll say: wtf, you told me to go for Student and then you come up with this offer.

I say: Yeah, because we have a wonderful bundle to get Student+Professional at $149 off (You'd pay only $799 instead of $948). This price is ridicolous and yes it includes our eCPPT exam voucher. Cool

Hope you like what we have to offer


	Logged

Founder and Lead Author of eLearnSecurity
Training for Penetration Testers
http://www.elearnsecurity.com

Founder of HACK.ME Free community based web app security virtual labs
https://hack.me

rabray

Newbie

Offline

Posts: 38

Re: Beginning in ethical Hacking / pentest

« Reply #5 on: June 12, 2011, 05:57:12 PM »

Also happy to give more info about the benefits I have personally gained from taking part in a challenging and interesting course.


	Logged

---------------------------------------
CEH, eCPPT, MCT, MCSA, MCDST, A+, Net+

Never been the flamin type.

furytech

Newbie

Offline

Posts: 2

Re: Beginning in ethical Hacking / pentest

« Reply #6 on: August 08, 2011, 10:47:55 AM »

I am also new to the security field and had a couple questions regarding certifications/employment.

To give a little background to help your decision making...

I currently have an associate's degree in computer networking and will be done with my bachelor's in security next year which includes (ccna, ccna-s, ciw database, ciw javascript, ciw web design still working on these) certifications.

I have 3+ years of help desk exp and about 6 months of work relating to IDSs. I also have the CEH, Sec+, Net+, A+ and will be taking the ECSA/LPT bootcamp next month.

As far as what knowledge I should already have or will obtain through the ECSA/LPT, what should I take next?

I am looking at the OSCP or the eCPPT. I noticed they are both almost the same price. Also if I would go for the eCPPT, would it be better to take the Student or the Pro with what I should already know?
Can someone please explain the main differences or which would be better to take first?

Thank you in advance.


« Last Edit: August 08, 2011, 10:50:04 AM by furytech »	Logged

CEH, Security+, Network+, A+,
MCTS Configuring Windows 7

impelse

Hero Member

Offline

Posts: 565

Re: Beginning in ethical Hacking / pentest

« Reply #7 on: August 08, 2011, 11:02:55 AM »

For yout certifications, I think OSCP will be better


	Logged

CCNA, Security+, 70-290, 70-291
CCNA Security
Taking Hackingdojo training

Website: http://blog.thehost1.com/

SephStorm

Hero Member

Offline

Posts: 530

Re: Beginning in ethical Hacking / pentest

« Reply #8 on: August 09, 2011, 09:42:28 AM »

lol @furytech,

someones a future WGU student. Cheesy

just an interesting option for you, I see you've done the CEH and want to do the ECSA/LPT.

if youve never done a practical pentest, I would suggest the 10 day ethical haccking program offered by intense school. Yes, during the first 5 days, you will cover the CEH material, but if it is anything like the online course, you will have plenty of lab time.

In addition, not only do you get vouchers for the CEH/ECSA, but you can take the CPT/CEPT, which require practical exams, much more important to building a career, and experience.

if you can pass that, then I would look at eCPPT and OSCP.


	Logged

Support my hactivities.
http://www.cafepress.com/TRUEHacker

Pages: [1] Go Up

« previous next »