Forum Replies Created
August 26, 2016 at 11:49 am #54291
July 28, 2016 at 2:08 am #54257
Did you eventually take the course?
June 26, 2016 at 1:25 am #54284
What area of security are you interested in?
• The Web Application Hacker’s Handbook (https://www.amazon.com/Web-Application-Hackers-Handbook-Exploiting/dp/1118026470)
• The Art of Software Security Assessment (https://www.amazon.com/Art-Software-Security-Assessment-Vulnerabilities/dp/0321444426)
• The Tangled Web (https://www.amazon.com/Tangled-Web-Securing-Modern-Applications/dp/1593273886)
May 5, 2016 at 6:30 am #54269
In order to get LPT you need to have passed CEH and ECSA. Once you have these two, you just apply for LPT and pay some money – there is no pratical or theoretical exam involved.
January 29, 2016 at 3:27 am #54255
I haven’t taken their training, but as a general recommendation corelanc0d3r’s tutorials cover many different topics that would be useful as a preparation. Similarly, you can find some tutorials by FuzzySecurity, The Grey Corner, Security Shift and Open Security Training. And of course other great resources like phrack and PoC||GTFO.
Looking at the course syllabus and searching for the covered examples that are used during the training, you can find some tutorials and further explanations that deal with the same vulnerabilities online. For example, for “Module 3: ActFax (OSVDB 89944)” a tutorial is provided by Craig himself (assuming it is the same vulnerability that he discovered) as well as by others. The same applies to other examples covered such as “Mozilla Firefox (CVE-2011-2371)” (see here and here).
If you decide to take the course it would be great to see a review. 🙂
January 8, 2016 at 5:13 am #54238
December 14, 2015 at 9:29 am #54236
I haven’t taken the course, but from the website:
6. Is this Course for Novices or only for Experts?
This course is for both. The language basics and PowerShell programming, which form almost half of the course, are covered with patience and keeping in mind the students, who have, no or very little prior programming experience. During the part where application of PowerShell in penetration testing is discussed, the course gathers speed and even expert users will learn new concepts and applications of Offensive PowerShell.
So it seems that if someone has no prior experience with PowerShell it should be fine.
November 27, 2015 at 5:00 am #45388
dynamik, how was the AWAE course and certification? 🙂
Has anyone else attended it at the last Black Hat conference and could provide some feedback?
September 4, 2015 at 2:31 am #45386
It seems they are trying hard to release the online version of AWAE by the end of this year. 🙂
July 15, 2015 at 2:28 am #54208
Then why not include them?
July 14, 2015 at 2:27 am #54206
June 30, 2015 at 1:42 am #54194
Thanks for the review, Tim. It would be nice if you could update it once you have taken the associated exam. 😉
March 28, 2015 at 5:13 pm #53628
I did recently book AWAE at Black Hat. I’ll probably limit 2014 to that and my degree. CRISC isn’t really a priority, and I’ll push that to 2015. After the OSWE exam, I think I’m going to need an extended vacation from 2+ years of OffSec training.
Did you eventually take AWAE? I’d love to see a review from you. 😉
March 13, 2015 at 1:16 am #54145
Thanks Don, seems to be a nice opportunity for complete beginners.
November 6, 2014 at 6:01 pm #53960
I think your background is better than as of many others who have taken the course, so I wouldn’t worry too much about it. Like m0wgli, I too would sign up initially for 30 days and see how it goes. If you are in no hurry, you could try a couple vulnerable vms (for example, see vulnhub.com) before enrolling in the course, but based on your description I’d say you could start any time.