Don Donzal

Forum Replies Created

Viewing 14 reply threads
  • Author
    Posts
    • #175691
      Don Donzal
      Keymaster

      There’s a lot in this post, so I’ll just try to jump right in.

      First thought that came to mind is that you have a good foundation of knowledge. You’re covering all of the bases. So the next step is to get more experience in each. Start with a home lab. Setting up all of these different technologies gives you practical hands-on experience. So solidify it more.

      Next would be to get the knowledge you need in cyber security. Not sure in which direction you plan to go, but a good start would be the free PTS course you received when you registered here on EH-Net. Then upgrade from the Barebone Edition to Elite for a very inexpensive practical, hands-on course AND cert.

      Next would be to get additional training in the direction you find interesting. It could end up being more general than security, or specific areas of ethical hacking like network pentesting, webapp pentesting, incident response, etc. If you need more practice before deciding on a career path or just before you plop down good money on additional training & certs, then try some of the free content on site like VulnHub, Hack.me, TryHackMe, etc. as well as some CTFs.

      Then it’s up to you where you go based on what excites you. I would wait until you get some of this under your belt before deciding on a Sr Project. You still time, and your mind might change based on what you learn / like.

      Hope that helps,
      Don

    • #175636
      Don Donzal
      Keymaster

      Certificates of Attendence are sent to attendees of the live event a few hours after completing the presentation. This is handled by GoToWebinar directly and not us, so please be patient. It uses the name you entered when you registered and can’t be changed. Most attendees that we ask report getting them, but there are a few that report not receiving them at all (not even in their junk folders). It’s automated by GTW, and I’m not exactly sure how they determine if someone “attended” or not. Unfortunately, this is out of our hands as GTW gives us no options other than a simple checkbox to select the feature. There’s no way for us to change a name, resend certificates or add someone to the “attended” list.

      We add this feature as something nice to have. It’s not actually required to submit CPEs, but we do realize it can make the process easier.

      Thanks in advance for understanding,
      Don

    • #175582
      Don Donzal
      Keymaster

      You keep mentioning that you can hear it from the earphones. Is it wired or wireless? Bluetooth? Maybe that’s the direction to look.

      Or it’s a ghost, the CIA or aliens. 😉 jk

      Don

    • #175324
      Don Donzal
      Keymaster

      Opportunities are always good. Sounds like you have plenty, but before we dig in… what grabs you? What excites you? I can’t tell from your post if you’re more interested in diving deeper into tech or want to push towards policy, management, etc. Although it does seem as though you’re leaning tech. If so, which way?

      As an example, if you’re more interested in becoming a pentester, then for #1, I’d go with Linux+. But if you were more inclined for a broader role in something like infrastructure, then CASP.

      Once you decide that, it might make it easier for you to decide the rest of your path. Something that might help is going through the material provided in the free PTS Barebones course you received as being a member of EH-Net. This might help you decide if you gravitate towards pentesting. It may be that the blue side is calling you with incident response in a SOC, threat hunting, etc.

      Whatcha thinkin’?

    • #175292
      Don Donzal
      Keymaster

      Hard to tell based on the info given. However, if you purchased Metasploit Pro, first stop should be Rapid7 support. Next idea would be to read or watch a few simple tutorials on the usage of Metasploit. Lots of free resources out ther. There might be a small step you missed in setting it up (possibly the rhost or in selecting the right payload).

      Hope this helps,
      Don

      EDIT – PS – Just be careful what payloads you throw at it. You could crash it and cause more problems. If you have a staging env, best to test it there first. Even better is to play / learn in a practice env, then try testing your real app. I’m sure you realize that this just isn;t something that you install and start launching at everything. The tools are great but still need some learning time and experience to get the proper end result.

      • This reply was modified 5 months, 1 week ago by Don Donzal. Reason: Added a warning
    • #175112
      Don Donzal
      Keymaster

      The certificates come directly from GoToWebinar, the platform we use for our events. They are automatically sent about 3 hours after the ending of live webinar. Unfortunately, we have no direct control over them. If you didn’t get it, you may want to check your spam/junk folder.

      Either way, thanks for attending,
      Don

    • #175075
      Don Donzal
      Keymaster

      Hey raptorfx,

      Here’s our standard reply for those who don’t get the email:

      Registering on EH-Net triggers an automated email regarding the Free PTS. I’ve dealt with this issue several times, and often it’s as simple as it being in your spam folder. If you checked and it’s not there, waiting a little longer might do the trick. If not, then please try this link to verify that reg went through properly:

      https://www.elearnsecurity.com/secured/ehnptsfree

      If all else fails, you could also contact support (at) elearn security dot com.

      Hope this helps,
      Don

    • #175074
      Don Donzal
      Keymaster

      Click this link and fill out the form. See you tomorrow!

      Webinar: Shellcode for the Masses

      Don

    • #175016
      Don Donzal
      Keymaster

      Wow! Almost 12 years ago. Life is pretty amazing that way. Congrats on the career advancement and the family.

      We’ve had our ups and downs, and we even went down for a while. But we’ve been live again for about 2 years after being acquired by eLS. Forums are nowhere near as active as they once were, but our content is still pumping. Back then our webinars were hit and miss. Now we do them pretty much every month and the attendance has been incredible.

      Thanks for the update and good luck on getting back to the ethical hacking career path. Keep us posted. Hit me up off thread if you’d like to catch up more.

      Don

    • #174921
      Don Donzal
      Keymaster

      Thanks for the heads up.

      Don

    • #174706
      Don Donzal
      Keymaster

      Excellent!

      Be sure to share your thoughts on the course.

    • #172453
      Don Donzal
      Keymaster

      “Hacking for Dummies” by Kevin Beaver
      “The Basics of Hacking and Penetration Testing: Ethical Hacking and Penetration Testing Made Easy 2nd Edition”
      by Patrick Engebretson
      “Penetration Testing – A Hands-On Introduction to Hacking” by Georgia Weidman
      PTSv4 Barebones Edition by eLearnSecurity that you have free access to by becoming a member here.
      “The Web Application Hacker’s Handbook: Finding and Exploiting Security Flaws” by Dafydd Stuttard & Marcus Pinto
      “Kali Linux Revealed – Mastering the Penetration Testing Distribution” by Raphaël Hertzog, Jim O’Gorman and Mati Aharoni
      Not a book but this may help – http://www.pentest-standard.org/index.php/Main_Page

      If you look up these titles in Amazon, there are plenty of other titles recommended. Start looking through them to get a feel for what else might be good for you or where you want your career to go.

      Hope this helps,
      Don

    • #172069
      Don Donzal
      Keymaster

      Without a doubt, you will need to get your networking fundamentals down. To answer your specific questions…

      I’m not sure which Udemy course you mean, but Security+ is not what you want first if you’re looking at CompTIA. Look at their Network+ cert.

      On the other hand, the free Penetration Testing Student course by eLS you received simply by registering on this site has an entire Preliminary Skills section on networking. Programming, too! 😉

    • #171825
      Don Donzal
      Keymaster

      Registering on EH-Net triggers an automated email regarding the Free PTS. I’ve dealt with this issue several times, and often it’s as simple as it being in your spam folder. Sometimes a filter on the email server blocks it, too, and you won’t see it on your client (depending on how you access your email).

      If this doesn’t work, we have some other means to handle it internally. So please use the envelope icon on every page on EH-Net to contact us. We’ll handle it as quickly as we can.

      Thanks in advance for your patience,
      Don

    • #171820
      Don Donzal
      Keymaster

      Thanks!

      • This reply was modified 11 months ago by Don Donzal.
Viewing 14 reply threads

Copyright ©2020 Caendra, Inc.

Contact Us

Thoughts, suggestions, issues? Send us an email, and we'll get back to you.

Sending

Sign in with Caendra

Forgot password?Sign up

Forgot your details?