-
hayabusa replied to the topic Language order? in the forum Programming 5 years, 9 months ago
@KrisTeason wrote:
If you are new to programming, I would start with Python -> C -> ASM. Perl may not be necessary here. You should take a look at some of the courses Vivek has at Pentester Academy. There’s still promotional pricing available for a limited time. He has some ASM Material on there that is solid. In addition to Pentester Academy, Cybra…
-
m0wgli replied to the topic Web Application Penetration Tester eXtreme (WAPTX) – eLS in the forum News from the Outside World 5 years, 10 months ago
@KrisTeason wrote:
For $3999 you can get access to all 9 of their courses (elite version). Insane deal!
+1
They are also currently offering a Christmas gift card for $150 off of new enrollments into individual courses as well, this also includes a further price reduction for adding additional course’s if purchased at the same time:…[Read more]
-
mosunit90 replied to the topic Starting OSCP journey | 23rd Nov 🙂 in the forum OSCP – Offensive Security Certified Professional 5 years, 11 months ago
@KrisTeason wrote:
Look into:
The Basics of Web Hacking: Tools and Techniques to Attack the Web (Great introductory book)
Thanks KrisTeason.
-
mosunit90 replied to the topic Starting OSCP journey | 23rd Nov 🙂 in the forum OSCP – Offensive Security Certified Professional 5 years, 11 months ago
@KrisTeason wrote:
Hi mosunit90,
Welcome! PWK doesn’t go too far into Web Application Attacks. They saved their real content for their AWAE Course. To get an idea of what to look forward to check out their course syllabus (Check out Section 13). The OffSec guys developed a custom web app for you to play around with that’s provided on the Lab…
-
carlos123 replied to the topic Anybody have experience in helping residential wireless customers get secured? in the forum Network Pen Testing 11 years, 8 months ago
@KrisTeason wrote:
I’m feeling it Carlos, don’t know about you saying secure enough to keep the government out though, that’s a little over exaggerated. Let us know how this works out for you.
That’s fabulous if my flyer makes you feel insecure Kris :).
At least I hope that’s what you meant :). And not some weird attempt to feel my flyer t…[Read more]
-
unsupported replied to the topic Scheduled CEH for March 20th in the forum General Certification 11 years, 8 months ago
@KrisTeason wrote:
It may be good to consider a virtual machine as your attack box so you could switch between your attack box with XP and your linux box with ease. Just wanted to say goodluck in advanced! Let us know how you do.
Thank you for the luck. I’ll post a full review after the test.
I’ve considered that. I would just need some m…[Read more]
-
elcapitan replied to the topic Failed CEH today with a 67% in the forum General Certification 11 years, 8 months ago
@KrisTeason wrote:
Well first off congrats. Good to have yet another C|EH on board the site (Not that I’m one but there’s many here who also have it). Serious; Improper Grammar? That’s highly not professional, makes me wonder how employers actually see this certification in the industry. Can you provide for us what all you read / studied that…
-
timmedin replied to the topic SANS SEC709 – Developing Exploits for Penetration Testers & Security Researchers in the forum Malware 11 years, 8 months ago
@KrisTeason wrote:
lol,
my guess is he is man, he knows a lot about the course & provided the same e-mail up top.Didn’t read that well enough. Today is not my day 😉
-
Jhaddix replied to the topic Developing Exploits in the forum Network Pen Testing 11 years, 8 months ago
@KrisTeason wrote:
I bet that presentations a little too advanced for what he’s looking for. I’ve been studying this topic as well, I found this site useful:
And If You’d Like To Do A Hands On Demo Of A Stack Overflow, Go Through These Two Videos :
Learn Stack Overflow Exploitation – Part 1
&
-
jason replied to the topic Setting Up Lab in the forum Hardware 11 years, 8 months ago
@KrisTeason wrote:
Mambo, you may want to look into a book called “Build Your Own Security Lab: A Field Guide for Network Testing”.
It is a good book. I did run across a few dead links in it however…
-
Jhaddix replied to the topic Is Professer Messer's Nmap Training Course worth doing? in the forum Opinions 11 years, 8 months ago
@KrisTeason wrote:
Don’t know if anyone’s taken that course on here, I bet you’d have better lucky purchasing Fyodor’s book “Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanning“. It’s a lot cheaper and your getting the instructions on how to use the tool from the author of it.
I have taken the course…[Read more]
-
Xen replied to the topic ANTIVIRUS-Yes or No? in the forum Malware 11 years, 8 months ago
@sgt_mjc wrote:
Is there a reason you did not mention a hardware firewall like that included in most home routers? I have found this to be a great help when I have scaned form the outside and there was only one outbound port open and I could not “see” the inside network. What are your thoughts on that?
Frankly speaking I don’t have much basic…[Read more]
-
oneeyedcarmen replied to the topic Is brute forcing a waiste of time? in the forum Network Pen Testing 11 years, 8 months ago
@KrisTeason wrote:
Hahaha, Wow I had no idea Twitter didn’t have a password policy to lock an account after so many failed attempts.
Supposedly they do now. They’ve also implemented a timeout. We’ll see.
-
Kev replied to the topic Word list for FTP brute force in the forum Network Pen Testing 11 years, 10 months ago
@KrisTeason wrote:
@dlupisella wrote:
I’m doing a FTP brute force on a network pen test and I wanted to find out what everyone’s opinion or favorite was on a good word list to use. Thanks!
Doing a network pen test and FTP brute forcing? Isn’t this method highly likely to be picked up by an IDS?
You would think so, but you can some times get…[Read more]
-
joswr1ght replied to the topic Wireless Pen Testing Cards in the forum Wireless 12 years ago
@KrisTeason wrote:
I’d personally go with the Alfa AWUS036H as suggested below:
http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/topic,2649.0/I second that recommendation, also available at http://www.netgate.com/product_info.php?products_id=665 (no affiliation).
-Josh
-
shednik replied to the topic IP address in the forum Wireless 12 years ago
@KrisTeason wrote:
You might want to look into the netstat command. I’d also suggest when talking to your victim to attempt to open a connection between you two chatting with each other, perhaps send your victim a file, get into a voice call directly with them or invite the user to your webcam,etc By doing these, you may have a better success rate…
-
RoleReversal replied to the topic Starting OffSec101 in the forum OSCP – Offensive Security Certified Professional 12 years, 3 months ago
Cheers for the responses guys, just got access to the course material today (wish I was at work, the download would be faster 🙁 ) Printer is currently in overdrive 😉
@KrisTeason wrote:
I know it states that programming knowledge isn’t really needed but throughout the course you do write useful bash scripts. If I were in your position I’d get a…
-
Anonymous replied to the topic Countermeasures to Client Side Attacks in the forum Network Pen Testing 12 years, 5 months ago
@KrisTeason wrote:
Ight, thanks for the reply Chris, good to get info from a respected member of this forum.
oh well hopefully one of those guys will reply soon.
show less
show more
@kristeason
KrisTeason
Upcoming Webinars
– EH-Net Live! Thurs Oct 29 @ 1:00 PM US ET. Details Coming Soon!
Recent Articles
-
Wireless Pentesting Part 4 – Performing an Actual Wireless Pentest October 9, 2020
-
Video: Android Hacking Proving Ground September 29, 2020
-
Webinar: Android Hacking Proving Ground September 14, 2020
-
Video: TryHackMe – Behind the Curtain September 2, 2020
-
Wireless Pentesting Part 3 – Common Wireless Attacks August 25, 2020
-
Intro to Blockchain as a Service (BaaS) August 18, 2020
-
Webinar: TryHackMe – Behind the Curtain August 17, 2020
-
Video: CISO Underrepresented July 31, 2020
