#cyber-and-careers

thanks

Boy I done fuct up. I have a screening for Sr. Pen tester. I only passed my CEH , know a little about nmap and metaploit. I a SOC analyst with zero pen test experience . I’m gonna do this for all you fools here and give it my all.

I wanna know how you got into a screening for a sr, pen testing position with only CEH and some nmap and metasploit knowledge

Like what

How did this happen. There comes a point somewhere between optimistic and blatant disregard for requested qualifications, and while there is a fine line, you sir have passed over it at 30,000 feet with no idea where or when you did. I find this hilarious, but at the same time heartening, because when I go in to interview for a job I am not qualified for, at least I know I will get as far as you have.

@polar rock my resume has zero pen test keywords. My whole resume is the opposite of pen test experience. I worked as Noc analyst , Disatser Revoery analyst , Change mgmt, Sys admin, and now I am SOC analyst

I have a MBA and Sec+, expired CCENT

I’m just gonna be open and honest. I can’t hit the ground running, but at best a slow crawl.

Also Zero knowledge of python or anything like that

@grave needle I kinda used my fear into fuel. Often when I apply to stuff - I think of Charlie Murphy in one interview - he said - “Fook it I make my own rules .” Now there is times when I have been bodied in an interview ...

One time HR asked do you have 3 plus year of reverse malware engineering? 3 +threat hunting ? Dev Ops ? Etc.... it was awful but I did dunk on her when she asked why I applied to the job- she said it was a well crafted answer

I mean SOC analyst and sysadmin are good enough keywords to get thru keyword screening

blue-teamers generally make good red-teamers

you were passed along for some reason

@languid hearth it gets better. Required if you have bachelor degree- you need 7 years of IT experience and 5 of them need to be in Cyber. I have like 1.8yrs lol

get this -- after 4 months of being a PenTester I applied for a red team position

got an interview

they flew me out

they ultimately went with another candidate

but they still gave me a job.

Damn a fly out is nuts

companies work in mysterious ways -- you never know what the totality of circumstances may be

I have some made up prior experience no certs not degrees and I had a screening for a SOC Analyst tier 1 position with a very large company. I did however get all of the questions right except for one. They asked me how you would go about elevating to admin in Linux or windows I answered something about "//ADMINISTRATOR" then the next day realized what they were actually asking me and realized I could have just said "sudo -i" they passed on me but said they would like to give me another shot if they have another opening

Damn missed 1 q! They harsh man

Haha yeah. It gets better. The director of threat response sent my resume to the hiring manager for that position after he talked to me for a few minutes. I have the right knowledge but no academic backing. Just self taught bs to get by and alot of studying for the CASP+ it was also my first cyber security interview and I was a bit nervous

Damn you’ll get the second one for sure

I hope so. I also don't know how long it will be until they have a nother opening though.

@eager badge How you studied CASP+?

I would love peoples opinion on this. I'm treating Try Hack Me like a video game, I spend my free time trying to get CTFs and going through the walkthroughs for fun. I feel it's a better use of my time than playing Runescape or WoW in my free time. I already have a job in computers as a C++ coder and I like it well enough.
If you were in my position would you pay for a certification at any level?

depends, could be a fun challenge depending on the certification

I was thinking that, maybe over Christmas get the eJPT. I don't know, is $200 worth it if I'm not going to use it? I don't know. Just kicking around the idea.

plus you'd be surprised how your current job would react, like I got the AWS Developer Associate and people were amazed... I'm not a developer, never will be one but was surprised how much management liked that

Good point :D

At the very least you can talk about your experience with certs which employers are sometimes more interested in than the actual cert

For example I had an interviewer recently ask me "what unique software experience have you had", and I talked about eJPT, getting into pentesting and how I was learning a new tool basically every day and how I approached that process, and they seemed happy with my answer

and even if it isn't directly related to your job, I'd definitely put it in your resume/yearly review

Good points guys. Thanks for answering definitely makes me think more about getting a certification.

@unkempt nova I have a thing through icollege it's basically all of itpro TV's videos and show notes.

Good evening all, I look forward to chatting with you all over the coming months.

well I for one am flattered

we are here

I just got offered a 6+ month contract for internet security specialist. It seems like it's a 3rd party recruiter is going to submit my resume to the client. It sound promising. They asked me if I have any experience analyzing maleware though.

be truthful and my guess is that isn't an offer?

You are correct. I was honest. I told them I never analyzed any maleware. They just sent me a rate and right to represent form that stated it isn't a job offer. But it's a start.

When I spoke with the recruiter she made it sound like an offer. It's still pretty promising though.

Best of luck!

@meager hazel thank you.

You also may want to spell malware correctly

I was going to say that but didnt want to be mean

Best of luck with the opportunity @eager badge. Hope it works out for you!

I’m sure the message/offer/opportunity was given for good reasons so (:

All of my malware is male. I was typing with one hand feeding my son. My bad on the spelling

You can learn a fairly good amount about malware without doing any actual reverse engineering of it

Indicators of compromise etc

No assembly required

ISACs are awesome and I may or may not be making a room about them

and generating basic IOCs

Understanding the basics of it isn’t too hard to approach, mastering it however and how it interacts with the OS is very hard to get into

I’m hoping the malware analysis pathway will cover the scale/transition of both

That's good to know thank you.

Hey I was gonna use that hugo theme!

https://blog.cmnatic.co.uk/posts/so-you-want-to-analyse-malware/

But if you’re looking to get hands-on with samples that replicate real-life characteristics (without being maliciois) then look at my current malware rooms

(Where the REMnux room is being peer reviewed that covers PDF & Microsoft office macro malware which is a very current payload)

Ah yeah ahah. I heavily adapted the theme I use for that @quick forum

macros are the bomb

however I think their use will go down once the sandbox is implemented

Oh definitely

Betcha it'll still work on the NHS etc

Give them another 20 years

I’ve introduced all kinds of real-world (but non malicious) payloads. Just waiting to get these working on AWS at an affordable cost for the rest of THM

I’m genuinely beyond buzzing to be able to excuse the time into that sorta stuff

It’s really lacking on the platform and I think that whole malware analysis topic would be super welcome

I cant wait to start taking my malware dev courses so I can make custom malware for rooms

MS are slowly implementing sandboxing for MS office stuff so it’s gonna interesting what comes from that in both parties

But damn

What’s out there IRL is rather sophisticated so

oh yeah

they get into some crazy crap

will definitly be interesting to see the bypasses for it

@polar rock ditto. I signed up to the malware dev course - it’s a very different perspective writing it then analysing or detecting it

My knowledge of C# is very, very limited so that course is making leaps and bounds

Office 365 sandboxing?

I’m very much hoping to get release onto networks to simulate C2C activity. I’ve got the CooctusRansom but can’t get it to C2 on THM too well

CooctusRansom 😄

Genuinely excited to see what I’ve implemented being to life in THM

Oooh yes Tim

It demands 10 CooctusCoins per day.

#general message

The C2C is working lxoally

I just gotta Docker it all for THM

CooctusSec 😄

😄

Exciting times if I can pull it off (:

That would be interesting to see. Is that going to be a Network or single box?

I’m desperately trying to get it as a set of network boxes (:

That way you can see how the “malware” executes on a device from a a malicious endpoint like a URL and then contacts home for instructions etc

I’ve been working a heap tonne on it but uh ... given my new role...it may appear sooner then you think 😄

Looking forward to it. Use the power! 😄

Definitely!

I’ve been offered a fantastic opportunity and I really can’t wait to tuck into it

I’ve always said that I’ve loved loved loved room devving. But my work in the NHS formerly is a big restriction on the huge amounts of time it takes

Now that it’s been redirected to say the least, I’m very excited (and grabbing the opportunity given to the fullest)

Do what you love, is the best job. 🥇

Definitely!

I've been summoned by the master of the household to watch a movie. Good night. 🙋‍♂️

I’m very excited for this aha

Bless! Enjoy your evening @distant pier I appreciate your words of encouragement especially

ohno

a cooctus ransomware 👀

Just you’ve wait

What in Pars' name am I witnessing.

How is the itpro.tv?

Is it good enough for casp certification and renewing?

Just wanted to share some good news, finally got my first job in IT as a support specialist, and its fully remote! wouldnt be possible without the mentorship and knowledge I gained here ❤️

Congratz!

Congrats

Congrats!

dang congrats man, thats awesome!

@unkempt nova Hey. I use Itpro.tv, it is VERY good especially for the practice tests and labs. the only thing I will say is that the videos are not like your bite size you find on Udemy... I have found myself loosing a little interest because of that. however, all in all still a very good product!

Congrats@ancient prairie I am also trying to do the same. Unfortunately, I had to put the job hunt on pause for a little bit. Want to get a few certs to bridge the salary gap. Otherwise, Id be taking quite a pay cut.

What certs have you managed to obtain priot to getting your first gig?

is it possible to ethical hack without any linux software?

is it possible to ethical hack without any linux software?
@stoic lotus Yes.

@gleaming basin so the certs I currently hold are; A+, Google IT Pro, Test Out Client Pro, eJPT, and Fortinet Level 2 NSE associate, I was able to bring up that I'm studying for Security+. For reference I have zero background in tech. I'm also in school for a generic IT degree but it's not a bachelor's program.

@ancient prairie I also did Google IT thing and currently in process of completing google it automation with python and IBM Cyber Security Analyst Pro Certification. Honestly, I am ready to take A+ but as of few days ago I decided to go ahead and take ITF+ for practice + its another thing to add to my resume.

I have a Bachelors degree in another field as well

How was eJPT? Something i looked into taking for my personal gain

Thanks for sharing

@gleaming basin eJPT was awesome, had a great experience, learned a ton, and got a piece of paper saying I know how to pentest (kinda). With the new price being $200 (I think) I would say this cert is a must-get if you are new to infosec. That being said, you could feasibly learn waaaay more by just doing the offensive-pentesting path on THM if you are only looking to learn and don't care about having a certification.

Cool. I might consider that. Thanks!

$400 for nse level 4 cert. Jeez.@ancient prairie

Really would like to roll into course material for eJPT. I really have a hard time forking out $2000 right of the back for it. It would be better if monthly subscription for cybersec pass was available

Doesnt even include an exam voucher

You have to enroll in PTS by paying $1999/yr now + 200 for the exam.@ancient prairie

😫

Just wanted to share some good news, finally got my first job in IT as a support specialist, and its fully remote! wouldnt be possible without the mentorship and knowledge I gained here ❤️
@ancient prairie Congrats mate!

What should I learn for freelancing?

It depends what do you want to do

@shrewd sparrow Same problem in infosec institute too. I was looking for CASP+ video training. Also preparing for OSCP

You get PTS for free now @gleaming basin

Only have to pay for the exam fee.

^^

check the pinned messages guys

look for the starter pass

@elder grove labs are there in PTS?

If they haven't been instituted yet they will be.

All free.

Does anyone have any recommendations for books to read to get into pentesting and cybersecurity. I’m new to this field and I really wanna dive in it. Doing stuff in thm and get advanced enough for higher level activities.

check out #bookclub

what are the basic skills needed to start a help desk career?

@ancient prairie fully remote? Are you in dffierent country?

naw Im in US. My home office is like 15 minutes away, there's a physical network we RDP into for work that has our software suite.

what are the basic skills needed to start a help desk career?
@stoic lotus troubleshooting, patience for non technical people, being able to explain stuff without patronising is a big one.

@elder grove I will be on the lookout for it. As of now it is part of the cybersec pass

Signed up and ready :) This community is too helpful :)

Hi everyone I wan't to start a Cyber carreer which entry level certification can you suggest me (Sec+, eJPT, OSCP ...)

It depends on the country you are from and what role are you actually looking for, there's no "one size fits all"

Am in Germany

@barren robin You want to be penetration tester?

Yes

Sec+ is well known but eJPT is more relevant. I have done only Sec+,Pentest+ now maybe casp+ or/and oscp

@barren robin OSCP is more valuable!

Should I study for Comptia CASP+? I want to do some certs which have weight in the resume. I can't get CISSP as i can't proof my experience. Next certs would be OSCP and OSEP as my main concentration on penetration testing.

eJPT is much more basic than OSCP (For anteste)

CASP+ only weight if you want to work in US DoD at a level that requires it, otherwise it's probably not worth much. I've considered taking it 95% for the learning only

The PTS Labs in the Starter Pass are now live!

For those not in the know...

The INE Starter Pass is a free collection of snippets from various courses in the 4 INE Passes (Networking, Cloud, Data Science and CyberSec). However, there is one full training path (not snippets or sample videos) that comes absolutely free with the Starter Pass and that’s our popular and fully practical Penetration Testing Student offering that comes with slides, videos, unlimited lab time and 3 Black Box real-world practice pentests. It does not come with the eJPT exam voucher which is a separate $200 USD purchase. So you can think of it as getting PTS Elite for free without the exam and is available now for everyone.

Thanks for your patience and happy hacking!
https://checkout.ine.com/starter-pass?utm_source=77&utm_medium=referral&utm_campaign=starterpass&utm_content=vip

Sorry for what may seem like a sales pitch. But it's really just an update.

Anyone here take the CNSS?

Or certified in it or whatever

@exotic epoch Awesome. Thank you! Looking forward to learning :)

ive been reading up on the eJPT. Can anyone give me an idea on the difficulty level of the boxes? Just a general description, don't want any specifics or anything

@ me if someone responds

I am Blob

@somber bramble quite easy

but since the labs are live, you can try doing the blackbox labs to see for yourself. I've went for the ejpt without doing any labs (because I had the barebones edition), but I've heard that if you can do those 3 labs, then you're ready for the exam

those labs are free?

I wasn't subtle with my reaction spamming lol

yes they are

haha

oh wow thats awesome to know

ok, ill go try those out at some point!

and so youre saying if i can do those, im probably ready to purchase and take the test immediately?

probably, but I can't say for sure now, although I'm planning to do them myself at some point even though I've got the cert

awesome, thanks!

np. feel free to message me if you have questions about it. if you tell me roughly at which level you are, I can tell you if you're ready or not. that said, it never hurts to study more though, not necessarily for the cert, but for you

ill take you up on that rn 😉

We consider the Black Box labs to be eJPT exam prep. Was a great addition to the course for the Elite Edition when on eLS. Now free to everyone. Really does help get hands-on pentest practice for help on the exam and in the technical portion of a job interview.

Thanks so much for that Don!

Very helpful 🙂

Help spread the word of a great free way to get your toes in the pentesting waters:
https://twitter.com/ethicalhacker/status/1324467990075760640

The is honestly fucking amazing

Finally caved and bought the pass, excited to start towards eCPPT 😄

https://tenor.com/view/lol-haha-wow-mr-robot-laugh-gif-5711275

@somber bramble RE: the eJPT test. There is some network pivoting on the exam that you should at least practice in the "Find the secret server" lab before taking the test.

Your experience otherwise is probably fine.

Appreciate it!

That lab shows how to use routing table modification to pivot to other networks.

I’ll definitely take a look before taking it, thanks

I am new to security. Are there any roles which involve analyzing security incidents? I am not interested in a coordinator type role. I am thinking of technical analysis - what went wrong, lessons learned.

the hell is the starter pass

is it just bunch sample video ?

@exotic epoch

When i click on filter out video for starter pass

it want me to upgrade to cyber security pass 😂

damn everything looks pretty clean

but 2k

fk that

They should sell a course for $10 like udemy i would buy

https://my.ine.com/CyberSecurity/learning-paths/a223968e-3a74-45ed-884d-2d16760b8bbd/penetration-testing-student

These are the courses include with the free pass

I belive

https://my.ine.com/search?query=pentesting

@loud marsh

Ton of free stuff to learn

@loud marsh did you try to find the answer to your question before posting? check the top post in the pins. you used to be able to get the material for the PTS course for free, just the slides though. with the starter pass you get slides + videos + labs, for free. it's a much, much higher value than a $10 course on udemy, and very helpful for people just starting out and/or people on a limited budget.

Any feedback on CNSS?

from ISCI

lol. Sell eLearn/INE courses for 10 bucks like Udemy.

They're literally giving one away for free.

I have a coupon for free, so I'm wondering how difficult it is

I’ve done the free material for it which was pretty good for the exam i’m not so sure

gotcha, thank you

@cosmic ingot alright thanks

I found TCM udemy course is really good starting point, not sure if INE course any better for starter

🤔

INE is great honestly

I've done some research and basically

For the free pass

You get 150 videos

From all the categorys

@loud marsh

but learning path probably the only thing worth it. Otherwise I would use THM to learn specific thing

THM to learn a specific thing

Im in middle of TCM course

not sure i would want to test it out

If you want to go into more detial

Then INE

Fair enough, do what you prefer best

There are some topic haven't been cover by TCM, could use INE course as a supplement.

@somber bramble I found this which it might help https://khroot.com/2020/05/30/certified-network-security-specialist-review/

i read up on that before, thank you tho 🙂

also found some practice stuff on gitub, was trying to get a firsthand experience

no biggie

I was actually thinking of taking it as well and now they have the offer again but it does look like an interesting exam

well then take it before me and tell me how it is 😅

eJPT is much more basic than OSCP (For anteste)
@quick forum

Is it better than the comptia sec+ ?

for the most part

anything practical is better than anything theoretical.

my opinion is this:
You need theoretical certs to back your practical certs, if you're U.S. based, skipping Sec+ is shooting yourself in the foot

Is the training of the eJPT certification ?

see the pinned message

Am in Germany

see the pinned message
It's Free

yeah, it is lol

Am just a high school student.
For example if I wanna have a job in the cybersec the eJPT better ?

Last time someone wrote this is it good ?

Sec+ -> CCNA (optional) -> eJPT (PenTestStudent ) -> eCPPT -> OSCP -> Let your employer pay for anything els

you should take all of this with a grain of salt

^

we're mainly posting our opinions and back that with our experience, nothing more

I have insane opportunities and I have no certs in high school

just work your ass off, I wouldn’t worry about certs in high school unless you’re really invested in this, certs can get expensive

Sec+ -> CCNA (optional) -> eJPT (PenTestStudent ) -> eCPPT -> OSCP -> Let your employer pay for anything els
@barren robin that's a very expensive list

Yeah I know 😅

I can't afford it

If you’re in high school you don’t need all that trust me

Thx

highschool is the opportune time to get them.

How would we get experience because all they ask is 2 yrs of experience and some certs , how would a student do that ?

@quick forum

Is it better than the comptia sec+ ?
@barren robin CompTIA Sec+ is a multiple choice general security cert. eJPT is a practical exam on pentesting. SO quite different.

@languid hearth but most of the certs expire

Is the eJPT a lifetime certification ?

@lofty apex don't take job requirements literally. a lot of people apply for jobs they're underqualified for and end up doing fine. the main thing is to understand exactly what your responsibilities will be, and have something to show for it, i.e. that you are the right person for the job

Lots of certs have re-ups if you take a high level cert. Time things correctly, and you'll be fine.

waiting til you're in your final semester of Uni trying to tackle a bunch of certs isn't the best idea

Don’t do that either ^

but don’t take multiple grand worth of certs in one year, get what you can afford and make sure you have your school stable first

don’t be like me and over schedule yourself with studying for cyber, working, and studying for school and end up stressed

it’s not a vibe

Thank you 😅

@exotic epoch
Is the eJPT a lifetime cert ?

Tricky wording. Short answer yes. For that matter, all certs are. You can keep something like an MCSE on your resume as long as you state clearly from what year it is. We have updated our exams before, but same idea applies. As an example, we updated the eCPPT exam. So one could put eCPPT or eCPPTv2 on their resume. Also it does not require CPEs to maintain it's status like CISSP. Not to sound like a broken record, but you can put lapsed creds on your resume. When your career gets to a certain level, certs are not that important. If I let my CISSP lapse, I could still put on my resume that I attained the CISSP and held it for x # of years.

my boss don't give a shit about cert when hiring, he only had a comp science degree from 8 years ago with 0 cert. But he pay his employee to get cert after hired

Is a degree lifetime? Yes. But is something you learned in college 20 years ago really still applicable? Some yes but overall people are looking for the ability to attain that goal. Some do require them to get past filters but most (like @loud marsh said) are more interested if you can do the job.

thanks a lot for your insights Don

he did an interview with sans, he said it all self-taught, skip classes most of the time to test his university network.

so i don't think degree help him anything beside make him a better thinker

I disagree with that, but to each their own

well that is my opinion take it with a grain of salt

my boss don't give a shit about cert when hiring, he only had a comp science degree from 8 years ago with 0 cert. But he pay his employee to get cert after hired
@loud marsh

It's hard to find a job without a cert

I don't have any cert

i just lurking around linkedin and hit connect then he dm me offer a position. Many LLC don't require you to have cert i believe, they pay high too.

part of it i live near the area where the company is

Everyone is asking for the CEH or the OSCP but it's expensive

@loud marsh a lot of that largely varies depending on the area. where is your company based?

Austin, TX

@barren robin yeah most of job poster will require, but some companies do not have HR so the guy in charge just find people and hire directly

Certifications might lapse, the knowledge and skills gained from the course does not. They merely become somewhat outdated over time, which can be easily maintained through staying up to date with alternate ways through researching/learning/work.

Everyone is asking for the CEH or the OSCP but it's expensive
@barren robin I know people with insane jobs and positions who don’t or didn’t have their OSCP or CEH when they started

is there any way to hack insta id?

i mean my id was lost so

@exotic epoch
If i fail the exam can i retake it for free or do I have to pay ?

is there any way to hack insta id?
@warm hinge Doesn't sound legal.

They're banned

And I never knew who they were 😄 😉

@exotic epoch
If i fail the exam can i retake it for free or do I have to pay ?
@barren robin Free retake https://elearnsecurity.com/cyber-launch-faqs/

It's awesome

eLearnSecurity is awesomeness. Never doubt. 😄

Sweet !

hey guys, I was wondering if I need a bachelors degree to be able to get a good job in cyber security. Is this true?

Can definitely help, and is necessary to some companies, but I wouldn't say it's needed to get into cybersec.

it depends where you are as well

Are we allowed to advertise open positions here?

In the UK, it seems to be (degree || experience) && cert

Are we allowed to advertise open positions here?
@timber hill go for it

hey guys, I was wondering if I need a bachelors degree to be able to get a good job in cyber security. Is this true?
@strong jacinth do you NEED one, short answer no I know people who worked their ass off and have some really good jobs because they’re talented, it will very much help though. It also depends on where you’re located

We're looking to add an official job listing board soon but for now go wild with posting here

I seee okay well, I'm currently located in NYC, but I'm working on an associates degree and was wondering if I should continue on with getting a bachelors. Also I have no prior job experience in cybersec and was curious if I should just jump right into it since I will get that "experience" sooner rather than later. Just looking for some advice 🙂

would certs equate to what could be missing in a job app? Like a bachelors or not really

Ughhh I wouldn’t really say drop out unless you know for sure you have a really solid offer and you can go back later

This is touchy and depends on what you’re comfortable with

if you have your associates, its enough to scrape by.

you'll be walled off from a lot of companies if you don't get your B.S.

Hello everyone, my company is looking to hire a Cybersecurity Incident Response Analyst and a security focused position; Production Operations Engineer. Both are based in Austin, TX.
Cybersecurity Incident Response: https://boards.greenhouse.io/clear/jobs/2327678
Production Operations Engineer: https://boards.greenhouse.io/clear/jobs/2415471?gh_src=1c01fa0f1us

Please let me know if you decide to apply and Ill whip you a referal.

Clear, as in the airport security company? ... interesting

Yes, that Clear

We do biometric identification for a lot more than airports now, but yes that is what we are known for.

Well that's heckin' awesome and I'm happy to see those posted here!

There are plenty more open positions in NYC, so worth checking out those also https://www.clearme.com/about-us/#careers

I found that Roadmap interesting

Just a heads up, CEH is on there as a meme

CEH :
The one to rule them all.
The certificate of the ultimate penetration tester.
(It's a joke avoid this thing) - Commonly required by the govermments 🤣

@rancid adder you've been summoned

Tux created that^

henlo

oh

Yes, I had to fill the spots with something

CEH: Couldn't Even Hack. v11 now!

Does this webpage actually explain how to get the cert https://www.accessibilityassociation.org/cpacccertification

i can't tell if it's not there, or if i am blind

Check here? https://www.accessibilityassociation.org/certificationfaq

oh

The 2020 November/December Exam Session is now accepting applications. Exams can be taken November 9 - December 11.

you have to apply

its $325 too

Not too bad

If I get it I can become THM's Official Resident A11Y Expert™️

Convince thm to pay for it

I'm not even a room tester / fall under commissioned creators the likely hood of that is slim to none

you’re a staff though

and Accessibility liaison?

hmmmm

Having been in UX it's weird when I pentest apps that I think are designed like crap and don't really know if I should tell the team or not

i am not A11Y liaison but I basically do that for a lot of rooms

I will ask Ashu, it's $325 and I'd be perfectly happy to help out for free, but it'd be cool to have someone that is certified A11Y "expert" to help with rooms and stuff 😄

Informational finding: Set alt values on your damn images

Thansk @polar rock ! ❤️

Having been in UX it's weird when I pentest apps that I think are designed like crap and don't really know if I should tell the team or not
@meager hazel pentest finding - app designed like dookie

Medium Finding: Can't read anything. Remediation: https://snook.ca/technical/colour_contrast/colour.html

Finally started the path

I know its not much and a lot of people will probably say its worthless but its not for me. eJPT that is....

No one says it's worthless. Some people just say you may decide to skip it and save your money for something else. But everyone who's taken the exam (myself included) says the best things about it. The course itself is undoubtedly a great way to introduce you to pentesting and enumerating.

Doing Offensive Pentesting path on THM along side PTS

Can someone explain what's the difference between eJPT and PTS ?

eJPT, is the certificate you can get after passing the exam (an exam voucher costs $200).
PTS (Penetration Testing Student) is the course that you may take to prepare for the exam (it's now completely free as part of the INE starter pass)

thx

Completing computer science program soon and earned a few certs in the process, appreciate any feeback on updated resume. This resume is for entry level pentest or analyst role. Thanks.

IIRC you wanna keep it to 2 sides max?

good to know, thank you

thats a lot of white space in general, try to get it down to 1 page. 2 page max would really be for extensive history

its not an exam paper, learn how to effectively use the white space available. No reason for bullet points to have a space between them plus you are primarily using the left side instead of using both left and right sides. Things like your email address (and add your phone number) could be on the right side of the page opposite your name. I wouldn't put your linkedin page there, it is just being redundant and someone if they care are going to search for you on linkedin anyway. You might want to look at various examples. This page has some examples which are kept to 1 page. https://www.livecareer.com/resume/examples/information-technology

@warm hinge seems 42 SV is dead, welcome to 42 Paris mate ;-)
So basically you can write the 2 campus on the résume now.

@warm hinge Don't be scared of having some color or a unique layout. I've had really good feedback with this resume template. My hiring manager showed me previews of all the resumes he received for the job and they literally all looked identical to yours.

btw the template is from Canva, they offer a free subscription with the GitHub student developer pack, I use Canva quite often whenever I need some sort of professional looking graphic

https://flowcv.io/ I can't recommend this enough

you need an account, and it's free for 1 cv, $$ for more

@warm hinge unless you earned CySA from CompTIA, putting that is misleading

any good resources for learning power shell scripting?

Under the wire

powershell documentation

Get-Help

ok so I thought you were telling me to get help rather than telling them to use the get help menu

both

I will

get-help examples are really useful too, powershell is starting to grow on me

If you dont mind me asking @ancient prairie what was the biggest factor for you in obtaining your first it gig

Dm if its not a public matter

honestly it was a bit of luck, I was the first one to apply and also had a resume that stood out. Apparently I gave a really strong interview which solidified it for me. I also live in an area saturated with jobs like these and you can get entry level gigs with just a high-school diploma and an A+ certification so it's not the most difficult thing to do depending on your local job market.

Ive seen so many "entry-levels" that required ba in cs or IT

Or 3+ years of experience

Also, since you got your eJPT. Out of curiosity, should i take the long way to get the "flag" or whatever way I know how.

Some of their methodology is so lengthy

Definitely reminds me of a few thm rooms ive completed :)

I hear you and definitely agree it can be lengthy, the most important thing is getting out of the "flag" mentality and leaving no stone unturned. So yes definitely take the long way but just make sure you are enumerating every single possible attack vector, if you are planning on pursuing red-teaming/penetration testing this is very crucial.

I get that. Its not a ctf per se. Even if I get the "you got it" and it appears they give you 3 machines to enumerate. With each one contains a piece for another

And yeah I've seen those same "entry-level" posts, it's bs but most of the time due to an out of touch HR rep. I was wayyy underqualified on paper for my current job but I was able to prove I (somewhat) know what I'm talking about. Just keep at it and try to not get discouraged.

Definetely not going to be discouraged. Reason i asked about the boxes is Im not sure whether or not you are graded on end result or how you are getting there

It's a little bit of both, but the exam is definitely structured in a way that requires you to enumerate very well or you won't pass, the exploits are rudimentary it's just about finding everything

Hopefully Ill find out soon. Definetely not until Im breezing thru the black boxes

Thanks for the info

No problem, once you bang out the black boxes those are a really good test to know if you're ready for the exam. DMs are always open if ya have questions, best of luck.

THM beginner pentest learning path is a great way to get started for the eJPT in my opinion

if anyone is looking to be a software engineer, this really cool company called TryHackMe is looking for one:)

Who?

𝓣𝓻𝔂𝓗𝓪𝓬𝓴𝓜𝓮

Oh them

𝓣𝓻𝔂𝓗𝓪𝓬𝓴𝓜𝓮
@static tide never heard of them

Looking for someone who is good in website penetrations or web cracking expert for a paid gig, DM me to get more details of the job!

Banned.

https://tenor.com/view/apu-thank-you-come-again-the-simpsons-gif-11605188

I consider myself an Intermidite Pentester/0x8 H4CK3R Do you guys think I should get the eJPT Certification if searching for a job?

To me intermediate pentester means you could easily pass the OSCP. eJPT is an entry-level pentesting cert and while it doesn't hurt to have, I've maybe only seen it mentioned in a job listing like once or twice. My advice is if you are intermediate level to just pursue OSCP because your job prospects will skyrocket.

OSCP considered an entry level cert

@ancient prairie I decided to go for eJPT first then I'll go straight for OSCP

PTS is free nowadays. Doesn't hurt to do the course for the foundations. Not really a need in my opinion to do the certification unless it's for validation. https://checkout.ine.com/starter-pass?utm_source=73&utm_medium=referral&utm_campaign=starterpass&utm_content=vip

(I don't get rewarded for that link, by the way.)

then what is the refferal for?

They're giving them to track us I guess.

¯_(ツ)_/¯

interesting

I'm not one of those content creators who gets free stuff and then gives a 10/10 review for it.

¯_(ツ)_/¯

Hello everyone

https://www.nitrd.gov/news/national-cybersecurity-career-awareness-week-2020/resources.aspx

@naive cypress hi

@ancient prairie I decided to go for eJPT first then I'll go straight for OSCP
@lyric falcon I was thinking about getting the eJPT too. Did you pay for the INE training or nah?

eJPT training is free no need to pay for it

Thanks for the link though. Will put in good use @elder grove

I tried searching for this, but was too dumb so rip.

So u guys recommend oscp after the eJPT training right?

sure

Will it be enough though? I'm a newbie with no certs atm.

back in the day i did HTB -> two months -> PWK 30 days -> passed OSCP

if you know what networking is, ports, protocols (SMB, FTP, NTP, TFTP, HTTP, SSH, HTTPS, etc), IP addresses you'll be fine

HTB is a pain for me atm. can complete THM's rooms 40% of the time without the writeups and solutions

i know a few of those, but have a vague idea about them.

if you can get to the point where you've got a methodology developed, i.e. do what you can, research all the technologies that are in use, research exploits, successfully exploits, then you're ready

im no SQLi guru, but I know how to resesrch SQLi

Remember that you get PWK with OSCP

^^ That said, the OSCP exam is designed to be "realistic", which means that not every exam will be the same level. Some are very easy. Some are virtually impossible. Most fall somewhere in the middle.
For the upper end of that set, the PWK is nowhere near enough to prepare you.

are there any practical hands on courses for networking? i got the network+ course but its basically just a course and they don't test you on how much you know.

my networking basics are trash. but i guess i have a vague idea about what i do inside a box like scanning, enumeration etc.

CCNA

you're hands on configuring networks

otherwise, you'll want a broad systems administration course

im sure they exist

is david bombal's ccna enough? im not too sure if he uploaded the entire course on youtube.

100%

Alrighty

I think Droogy mentioned a course they took... if you see Droogy ask them about what the course they thought was helpful for sysadmin stuff

I was a networking guy before I was a security guy

I was a server guy before I was a security guy

thats probably why its harder for me lol, grade 11

also the shaved bald dude on Udemy is pretty good for CCNA

I did my CCNA in 11/12th grade

shaved bald guy hmm.

nice

my husband re-upped his CCNA... after 20 years and all I saw was some shaved bald dude on the screen ha

base CCNA is required for other Cisco certs

https://www.udemy.com/course/ccna-complete/ this one

dudes made at least 200k off that course

amazing

ngl finding ccna courses are way harder to find than normal udemy courses

ill give it a shot tho ty

got it.

38 hours!!

that's udemys model

the sale is going on 24/7

just found another ccna course with 80 hours on it. udemy is serious when it comes to cisco oof

udemy's sales model is sale 24/7

it adds perceived value

the discount price is the normal price

oh I don't buy udemy courses. i just use google dork it

yeah we don't do that here

since were a partnered server, we don't condone piracy.

i can't really afford it online, i got the money in cash. would yeet if I could

i have a feeling i might get banned soon cuz of this.

I didn't use any HTB Exotic.

You can do well using the CyberSecLabs and Tryhackme rooms there.

Add some of the newer ones as well (Relevant and Internal, for instance).

If anyone is interested, Nike is hiring for a Lead Cloud Security Engineer. Catch it is in Beaverton, OR (I was just geeking out about possibly working for Nike but Oregon is bleh for me) . I can share link if interested (recruiter reached out to me)

I would love to live in Oregon.

Lucky job.

it sounded cool, I just need a lot more diversity than Oregon offers

Thanks for the resources. Really appreciate it @elder grove

you too! :)@pseudo creek

@warm hinge I did end up getting the INE training, its pretty awesome tbh, and definitely worth it but I am trying to cope with "drinking water from a fire hydrant" syndrome because there are so many courses and modules I wanna learn

And to whoever asked about sysadmin stuff I got Testout Client Pro certified, which is a practical exam that covers the same objectives as MD-100/MD-101

Basically I am doing some sysadmin work now, and I would strongly suggest learning the hell out of Microsoft 365 if you wanna go that route

I might have to look into that, I just wanna get out of helpdesk

Ugh helpless desk, where you have to follow the script, even when it is inefficient

I can’t really afford INE, 1999$ for the cyber security pass. Thats like 2 years of saving pocket money. Sadly that amount too is taken as a whole and not on monthly leases.

@ancient prairie

@ancient prairie i see you have ejpt, did you get the course while it was still on elearn? if so, how does the experience compare? i really liked the experience of everything on elearn and i will buy ine if it’s near enough the same

@warm hinge I know it's a lot of mine, but for anyone who is interested, the els-cyber coupon is still valid.

@static tide I'm not the one you asked but that's what I did. got the basic tier of the PTS course and got the eJPT with it. RIght now I also have the INE starter pass, and I think it's really great (the labs mainly). very well laid out.

@static tide I'm not the one you asked but that's what I did. got the basic tier of the PTS course and got the eJPT with it. RIght now I also have the INE starter pass, and I think it's really great (the labs mainly). very well laid out.
@cosmic ingot I also got the eJPT but I don't know why it is not showing up on my dashboard. I bought it yesterday

@lyric falcon I'm not sure what's up with that. But I recently needed to get a pdf of my cert and I went to the old members area in elearnsec and got it off there, so you can definitely do that

@lyric falcon I'm not sure what's up with that. But I recently needed to get a pdf of my cert and I went to the old members area in elearnsec and got it off there, so you can definitely do that
@cosmic ingot How did you go there?

Elearnsecurity.com then login

Like we used to before ine

It's still there, plus your courses (if you had bought any)

I can't see it. They said my voucher was processed on my email.

@cosmic ingot I just got the voucher not the course

Alright, I meant it generally though; if you had bought any courses before ine, they are still there

Now I got my cert before ine so now I'm not sure where its supposed to show up

(the voucher)

same place

members.elearnsecurity.com > Exams

interesting

you get an email?

is there no link to it or anything?

is there no link to it or anything?
@static tide It just says Thanks for shopping with us

No

uhh i’d say give them an email or live chat

nvm live chat has gone

uhh i’d say give them an email or live chat
@static tide I did send them an email this morning

yeah not much you can do apart from wait now then i guess

From: eLearnSecurity Certifications info@elearnsecurity.com
Date: Tue, Nov 10, 2020 at 11:24 AM
Subject: Your eLearnSecurity order is now complete
To: ********@gmail.com

Does elearnsecurity have a link with https://www.caendra.com/?

yes

Caendra Inc. is the Silicon Valley company behind eLearnSecurity and its projects.
Caendra is in fact, eLearnSecurity.

I updated my banking details on there so maybe something will appear this time?

Maybe contact customer service.

Pts and ejpt will let you in solid skill for oscp?

I mean i need a two years in IT field or i can study hard and try?

eJPT won't but eCPPT will

Thxx arz i will look for

@static tide I love it, I would argue the quality is just as good if not better than eLS last platform, my biggest gripe is that we can't download PDFs of the slides (or I'm missing that option) which is something I'm going to talk to support about

Thxx arz i will look for
@round crown But it's good to have a eJPT cert if you are new in this field

@lofty apex eCPPT it will be same difficult like oscp?

I can't say as I haven't took it but I heard a lot of people saying it's not harder than OSCP as you can use tools in eCPPT while in OSCP your not allowed to use tools , you have to exploit the machines manually , if I am wrong please correct me

you can use certain tools, I believe sqlmap and Metasploit (can only be used once) are restricted

Since the OSCP is kinda crapshoot I have heard that the eCPPT can be harder, especially since there is pivoting involved

I haven't got any certification but I'm planning to take eCPPT then OSCP because eJPT is very basic and the material is also available in eCPPT too

I would argue that eCPPT is much more realistic tho in the sense that you can usually use whatever tools you want in an engagement

Yes pivoting is also involved in eCPPT

ill be honest, in my OSCP my attempt, I never found myself feeling like tools were the only way

@lofty apex i was looking for solid base to go an oscp, i can try with hard study to eCPPT i mean nearly basic level?

nor did I feel like tools would have been remotely useful

i think the restriction is more of a "don't complicate it, stupid" thing.

by tools you mean automated tools?

@round crown I think droggy can answer that as he had done eJPT

yeah, like SQLMap, Burp Pro, etc.

eCPPT is not really "basic" level per se, it is relative to your experience

for some people eJPT will seem like a mountain, to others an ant hill

@ancient prairie mmh im confuse now 😅😅😂

personally, I think that a lot of it has to do with your prior experience with IT/Networking/SysAdmin

eCPPT imo is supposed to be equivalent to OSCP

I had a lot of prior experience so I was just like /shrug yolo oscp

so yes, basic in the sense of entry-level pentesting, but not basic in terms of basic computer usage and skills

@lyric falcon It's not an active exam, you just have the voucher. You should be able to see the voucher immediately upon purchase, along with a "begin exam" button. Then it will show up in the exams field.

I just logged in and realized I'm not entirely sure where my "begin exam" button used to be. Maybe it was there. So yeah, if you've navigated your account and nothing is showing up, you could contact them

I just logged in and realized I'm not entirely sure where my "begin exam" button used to be. Maybe it was there. So yeah, if you've navigated your account and nothing is showing up, you could contact them
@cosmic ingot What does Verify Certificate mean?

I can send a link to someone to verify that I (name, surname) indeed am ejpt certified

so no need to send or upload anything else

you'll be able to do that once you pass the exam

Several people were having this problem too I don't know why

oh yeah, they changed something in their system, but right now you can tick a box to make your cert publicly accessible and send a link. otherwise I think you have to manually fill in the name etc.

oh yeah, they changed something in their system, but right now you can tick a box to make your cert publicly accessible and send a link. otherwise I think you have to manually fill in the name etc.
@cosmic ingot Where and how?

you can't do that right now because you don't have the cert 🙂

when you get it, you click "certifications" iirc, from there it's really straight-forward

eCPPT was a far more difficult and relevant exam.

The eCPPT exam and OSCP exam are two completely different exams. One is a pentesting engagement, the other is not.

for that matter, even ejpt is a pentesting engagement, just a more basic one

except the report part

And even that exam has more pivoting than the OSCP.

why is pivoting such an important thing for a cert I really don’t get it

Just look at a logical map for any corporate network and you can see how important pivoting is

@polar rock cause it's covered in the course material and then you put it to the test during the exam

That and you're presumably gonna be doing a lot of it irl

I mean I understand the importance of pivoting I made an entire network that used a ton of segmentation but I really wouldn’t pick one over the other due to pivoting and that’s the main argument I hear when eCPPT v OSCP comes up

pick what over what?

eCPPT v OSCP

I mean it's kinda baffling that OSCP has the respect it does given that it's not a realistic exam at all, I think that's the main thing, eCPPT will better prepare you for real-world pentesting imo

OSCP just means you are stubborn bastard 😛

but yeah it comes down to personal goals for sure, it will be a while before eCPPT is recognized well

@polar rock we weren't discussing which one we'd pick though, just talking about how different the exams are

I’m not referring to this conversation it’s just something I’ve seen come up a lot and the pivoting in eCPPT made my mind think of it

but to contribute further to this discussion, john hammond said he's taken both exams, and believes if you pass the eCPPT you can go for the OSCP exam with no additional preparation, and he believes that's not possible the other way around

alright then. even so, I would definitely pick ecppt over oscp considering the skills I would gain from each one, based on the feedback from people on this server

I would only pick oscp between the two for job aspects, because it's more widely recognised, and that's it

I personally would just pick up all the practical knowledge for free by researching rather than paying for it and taking the OSCP and getting the better resume from it

at the end of the day everyone wants a job and if you get a good job they’ll pay for any knowledge they want you to have

the last point is not necessarily true

it largely varies from employer to employer, and even when it's an option afaik you have a limited budget

that’s what I meant by a good job just wasnt verbose enough

There are good jobs that don't cover training (ie: boutique consulting). Depends on how you're compensated and other growth opportunities they can provide

Unrelated: just passed my AWS Solutions Architect - Associate exam

Bring on teh cloudz

The OSCP's continued value in the workplace only exists because people won't consider other valid, if not better, options.

If we're taking an exam for nothing more than a resume bullet, that really says a lot about it.

Nice if I wasn't using Windows everyday at work I would be pursuing more AWS stuff

Azure here we come

And to piggy-back on the Mayor's point I think once this current generation is in Senior roles and hiring positions we will see OSCP get slowly phased out

And I agree with John Hammond. There's no way I'd pass eCPPT with PWK/OSCP experience. Absolutely could have in reverse though.

Interesting, that's good to know considering I plan on taking both, maybe Ill just be an absolute madman and do them back-to-back

I mean I understand the importance of pivoting I made an entire network that used a ton of segmentation
@polar rock
What I see IRL:
Most engagements (void red teams) they put you on the native VLAN which allows you to more or less traverse throughout the network at will.
The thing that most important imho is knowing how to catch a shell over the public internet

No one does a good job of that.

I tried to convince Ashu to let us have a public IP address allocation for the new network, but no dice :(

something about AWS and their stupid rules

I think that's a concept that is poorly covered everywhere. Most people see VPN when learning and that's all it is. Never understand that you can't just grab a shell from your LAN without a forwarding rule

@languid hearth lmao did you see the amount of logon requests that came when we had the one server public for a couple minutes

yeah

the great thing about that is anything exploitable is hidden behind vhosts

with a non-standard tld

lmao a couple 100 logon attempts per minute

Hiii

I was going to make one of the What the Shell boxes public, but the option is gone from the console 😢

Also probably not a good idea anyway, given how flippin' exploitable those things are

does anyone use nmap regularly?

Pretty sure all of us do why

@stoic lotus Everyday 😄

im trying to figure out how to get nmap to work in my kali linux command line, im on a windows computer but i have the kali linux command prompt installed. my windows command prompt is reading nmap but my kali linux cmd isnt

WSL 1.0 doesn't suppose raw sockets

which breaks nmap @stoic lotus

damnnn

so do i need to create a virtual machine and download linux and nmap on the vm? and if so what software should i use because oraclebox seems to be glitched

personally i use vmware and kali since it was pretty easy for me to set up on windows

or if you wanted you could download the gui version of nmap; zenmap, as that works for windows

WSL2 works though.

what vm software do you guys use

VMWare

VMware pro > Virtualbox > VMware player

Virtual box, and VMWare workstation

WSL 2.0 is out, so update your windows and perhaps have better luck.

@undone shore

Is VMware pro cheap for students?

It can be free for students depends on your uni iirc

Ooh I'll need to see if they works

Thanks

Look for their black Friday sale, that has been the best price I have seen it at. (I'm not a student at Uni)

Has anyone recently taken an eJPT exam? If so, how long did you have to wait to get your exam on your dashboard?

have anyone here work for NSA before?

I know people who have worked at NSA, but not myself

If you worked for the NSA, could you say that you worked for the NSA? 🕵️‍♀️

yeah

lots of them don't, but I know people that publicly will say it

Hi everyone, I would like to ask for some of your inputs.
Currently my job is on vulnerability management for more than two years, now I wanted to transfer into SOC. we don't have a SOC yet in my current company so it means transferring to another company. I like what I do in vulnerability management and I still learn during every project that I handle. It's just that I feel/think that it's time for me to try new things. is this a bad thinking?

I'm thinking if it is a valid reason to say to the interviewer that I want to explore and gain more knowledge on the other areas of cybersecurity thats why I am applying for a SOC position. I would like to experience how to respond in an incident.
any other reason I could say to give more proof/assurance that I want to work in a SOC?

Good thinking. You might also mention that you want to learn how to pro-actively defend the enterprise. @olive forge

Excuse me @distant pier Do you have a blog or something like that? i like your blue team opinions and want to learn more from you

what vulnerability scanners do yall use?🕵️‍♂️

Nessus is pretty standard

thanks @distant pier I'll will remember to mention that.

I don't have a blog. F-Secure has an interesting series called Attack Detection Fundamentals that you might find useful. It's 4 workshops from June/July 2020. https://www.f-secure.com/en/consulting/events/attack-detection-fundamentals-workshops @cedar terrace

Thanks !!!

I saw NSA hired tons of unexperienced people with a very good salary. Is there any reason why to avoid them?

They hire two types of people, strictly:

• People with Higher Education degrees (A.S + 2 Yr Exp, B.S. + 0 Yr Exp)
• People with Experience ( No Degree + 4 yr Exp)

i had a friend did path 2

Let's not be advertising black hat hacking please 🙂

yea jail mess people up mentally

or the whole thing where if you get convicted of a computer crime you generally can't touch a computer for years per the terms of your probation

@loud marsh Please do not swear.

hi so i have no degree or relevant experience , i love doing red team but i feel more drawn to blue team ( i guess i like red team to know what i should look for), is there any advice anyone could give me?

No because I have no idea what you just said

alright which part do you not get?

have you done any blue team?

a little bit, as in basic volatility , RE and malware analysis

i recommend setting up your own lab

yeah i'm saving up to get my other desktop fixed since my current one doesnt support virtualization

ah

both my ssd and hdd became raw one day so yeh

yeah get a lab setup with a couple hosts, firewall, siem and kali and just go crazy

i heard gns3 is good for that , would you recommend that?

gns3 can be nice I personally love it

thx for the opinion

a good way to get started if you cant support virtualization would be to particpate in some blue team ctfs like opensoc and nifelham network

i only used it a tiny bit when doing ccna but i really should use it more

a good way to get started if you cant support virtualization would be to particpate in some blue team ctfs like opensoc and nifelham network
@polar rock thank you added them to my bookmarks

Check out Security Onion https://securityonionsolutions.com/software @turbid glacier

Check out Security Onion https://securityonionsolutions.com/software @turbid glacier
@distant pier thank you

security onion is brilliant in my opinion

i need to implement that solution in my workplace, but need to be considerate of the load it will need to intake and desing it correctly

Anyone here doing freelancing Or has done it

Blue Team Handbook by Don Murdoch has good considerations on Security Onion. @remote mauve

awesome, thanks for that @distant pier

As a penetration tester having blue team skills is good idea... right?

Yep

Is there any well respected Blue Team course?

Perhaps CySA+?

I think Splunk fundamentals is free?

Plus there's some forensics stuff?

Splunk, autopsy are all free but won’t help a lot with red teaming

If you have the money I would buy the INE pass and take the eCIR or eTHP or if you want to a little bit Tryhackme is slowly rolling out an amazing blue team path

Is Blue Team Level 1 certification of any worth ?

so, it looks to be a very good certification. But I have heard some not too good things about the instructor for the course and it’s not really worth it, I won’t go into details but just be warned.

Oh okay

Is there any well respected Blue Team course?
@unkempt nova EC|Council has Certified Network Defender (CND), it has courseware material, lab session material, and practical labs. It's mostly foundational information pertaining to defensive technologies. It's probably one of the least known courses by EC|Council, so it's hard to gauge whether it is considered as respected.

@distant pier Not sure if EC-Council course is really good. And they pricy

Yes, it's crazy expensive. 😄

My main focus is Red team. To become a good red team member, wanted to learn some defending technique

take a look at CCNA CyberOps for some of the basics

there's a blue team path in the works right now, so thm will have more content eventually

@languid hearth CyberOps advanced course than Security+?

lol yes

Searching for a online course for this cert!

Stupid question time guys.. FOr your last cyber job. Did your current employer contact your previous employer to check up on you? I've done 4 applications now and no prospect has contacted my old company (Although i did have this letter about my termination is classified as "No fault" .. nobody has asked for that either)

that's pretty normal tbh

So they just take your word for it nowadays?

there's a lot of trust for whatever reason

honestly

they care more if you can answer their questions to a sufficient factor

DAmn.. I've intereviewed twice in 21 yrs, and both times they ref + employer + cavity checked

have you been applying to smaller or larger companies?

Umm. Employer #1 in that list was a scientific nonprofit .. employer #2 was a small marketing/media agency

gotcha

they got bought up, merged with company 2a, who got merged with 2b, who got merged with 2c, who canned me on account of covid

neither of the big fortune 500 companies I applied for checked

Don't be sad

The risk management strategy they are primarily employing now is "ignorance" lmao

yikes

OTOH they did have me sign an independant consulting agreement for an exceedingly equitable rate.. But it doesn't matter if they are paying you $1M /hr for your work, if they hire you for 0 hrs a yr

DAmn.. I've intereviewed twice in 21 yrs, and both times they ref + employer + cavity checked
@median rune wait cavity checking in an interview?? I hope you're kidding lol

Umm. Only mildly

Though the really invasive interviews were for the entry level stuff oh so long ago.

federal?

DoD Contractors,

there was this one time i volunteered for a company that made sat-phones for military application. They had a crappy web page, and I volunteered to do some webdesign and IS type work to get notch on my resume. It was cheaper for them to hire me @ 6$/hr (min wage was umm.. 4.15 or 4.35 then)

That place used arcnet.. to give you an idea how long ago it was

at 6$/hr i was still pulling 900 a paycheck...

sheesh, sounds intense but fun regardless

It was fun... a good learning experience

arcnet has an interesting topology

YEssir

sheesh, sounds intense but fun regardless
@ancient prairie you're not talking about the cavity search anymore, right?

👀

INE black friday sale

40% off and I'm still nopeing kekw

40% off and I'm still nopeing kekw
@languid hearth there's still an even bigger sale with coupon els-cyber iirc

yeah I used the els-cyber coupon and gotta say I'm loving it

finally feel like im understanding assembly and binary exploitation a lot better due to some courses there

Good to see people seeing the value in eLearn.

els-cyber coupon has the same discount

but is a 2 year sub

makes sense

🤥

Sounds expensive. How much is it?

@warm hinge $1k1

Cybrary vs Ine 🤔 😱

INE all the way

they’re the learning platform for eLearnSecurity, the ELS certs are beginning to get more recognition it just makes sense

INE also comes with amazing lab environments

40% is really good deal tho. But you have to pay extra to each cert right? I just check and it is like 400 for each cert...

Correct.

so if you need to choose INE yearly with 40% vs OSCP 90 day lab + exam fee. Which one would you guys choose?

Im a broke ass student and can only invest in one path lol

The previous arrangement was per course with an exam attempt. For instance, PTP was like $1,499 for the elite version and voucher. It included 120 hours of labs and the additional lesson categories.

Now you pay for a year, and then the voucher. You get all lessons rather than pay for access to extras, plus unlimited lab time. Currently, there's a 40% off coupon. So it brings it down to around $1,200 a year. Add $400 for the exam. So $1,600.

It makes a whole hell of a lot of sense if your intentions are to complete multiple courses/exams in that 12 month period.

KuroHat, I guess it depends on what your goal is. An OSCP isn't a guaranteed job. Just a guaranteed resume bullet. And results from that course vary significantly from didn't get anything from it to some feeling rocket-science level benefit.

I've done eCPPT and OSCP. OSCP got me a resume bullet. eCPPT proved my ability to pentest. Two completely different courses with two completely different assessments.

In my opinion the ONLY reason to do PWK/OSCP is for an expensive resume bullet. And as more people earn eLearn certificates and enter the industry, the more those certifications will increase, and the OSCP's value will continue decreasing.

Thank you for you opinion Mayor. Also thank you for all the good content you bring to the community. Pls keep doing it! I'm almost done with my uni and start looking for a cyber sec jobs. From what I have seen on LinkedIn, They expected me to have 2-3y+ experience for a junior job.... Yes I want to have that bullet on my resume but at the same time I want to invested on the one that I will get most benefit off. It is not a small money we are talking about. Also, I'm open for any feedback/discussion 😄

Thank you so much. :)

I think the greatest challenge is trying to quantify your experience without the arbitrary time requirement. Which is why networking is so important in this field. If you can find an "in" from the inside I think chances increase exponentially. You'll almost certainly receive an interview, which I have personal and direct experience with. And after 50+ no-contacts and no luck direct applying, bypassing the traditional HR process landed me two offers from three employers.

So in my opinion your best efforts would be to build your knowledge base first, in a way that you can sell to a decision maker directly. And second, network like it's your only purpose in life.

KuroHat, they also have the option of paying monthly. You would need to contact customer service directly for that option.

you know how much that is /m?

$199

boiiii. if I choose to go for the ecppt now it will be cheaper than it used to be. yay.

Definitely could be. It took me about 6 weeks to get through the materials and be ready for the exam.

@elder grove how many hours/day did you study, very roughly speaking?

Honestly the one above ecppt, eptx I think it is looked like it had a really cool syllabus

oh yeah, it looks amazing

Five to seven days a week. Sometimes 10-12 hours a day, sometimes far less. Just whatever my brain could handle that day.

The PTX course is a massive undertaking.

so you went full on. I was hoping you could say less, because I'm thinking of getting just a 1 month sub and study my ass off. but not all days are the same, and this way isn't necessarily productive always

After eTHP is done and my sektor7 training is done I’m looking into either that course or the Red Team Operator by zero point security training

I haven't looked at zero point much, but my guess is it doesn't compare to the coverage in PTX. My brain hurt after looking at that.

https://github.com/ryan412/ADLabsReview

Neat little lab+exam review I found on Github

there's still an even bigger sale with coupon els-cyber iirc
@cosmic ingot what's that? 👀

@cosmic ingot what's that? 👀
@willow gate https://checkout.ine.com/, coupon els-cyber

How much off? 👀

I'm planning to buy it 🤔

it's the same discount as bf40 as far as I can see

I just think it will be valid for longer

it's 40% off

Okay

jeal

work hard 😄

Oh no, not buying yet. Was just checking the voucher 😂

@elder grove $199 for what?

Please no need to @ me. If you read up a bit more you’ll see me talking about INE paid monthly.

Any advise for freshers on getting a job in Cyber security field? I have been researching and applying but majority of the companies require at least couple of years of experience.

It varies from country to country, but here it tends to be (degree || exp) + certs

The certs are not optional, but you can have a degree or you can have experience

That said, I was speaking to a couple of Abertay grads last week, both of whom got jobs with F-Secure down in London straight out of uni with no certs

Apparently it's fairly common to hire based on a degree -- the company then pays for the certs

There are graduate programs etc that are good for it

F-Secure do summer internships too

The power of networking shouldn't be overlooked either.

Noted

Honestly from experience, it had a far greater impact than certifications did.

+1. I lucked out on my first infosec role but before then most of my opportunities were through networking and avoiding the HR filter (go straight to the person signing the cheque)

So one piece of advice would be to reach out to conference speakers after their talk and ask genuine questions about their presentation and work. Many of these people are in positions to hire or at least refer you to someone if you make a good impression.

Thank for the tips Mayor!! 😄

Guys I have a question. Let's say I have experience only in red team stuff, and I'm only looking for red team positions. If I'm in a job interview and I'm describing an attack (my methodology etc), I should expect them to follow up with a question about how I would advise the client to remediate the vulnerabilities I have exploited, right? So my question is, to what extend? A lot of vulnerabilities could be remediated by common good practices like regularly patching your stuff, changing default credentials, closing down ports of unneeded services etc. Should I be able to go into much more depth than this?

I haven’t had any interviews ask a lot of mitigation questions but typically it’s real quick and brief I believe TCM goes over how he gives mitigation strategies in his course

which one? peh? and which chapter (if you can recall)?

You could answer in a general sense, that remediation suggestions would be provided in your report, and that you would work with the client (in the case of internal pentesting, the division that implements it) to ensure proper remediation of the defect/finding.

Yeah I would expect that's a given, however I'm asking mainly if there are any things that would be unacceptable for me not to know in that scenario

Yeah PEH for each attack in the later sections he went over mitigations as well

I'd say, in an interview it would be unacceptable to provide suggestions that are bad, in case they posit a use case that you're not sure about. Saying "I don't know yet, but will research it" is the safe way to go.

Remediation room would be nice to have. Soon ™️

I mean we have a hardening room coming soon as well as bees secure coding

Hey guys, I am looking for advice. I do CTF with THM and HTB since like 10 months and enjoy it a lot. Recently the company where I work as software developer posted a job position looking for a "IT Security Representative" in order to implement a ISMS and get the ISO 27001 Certificate. I would really enjoy to work in security the likes of THM, but I am afraid this ISMS/ISO stuff brings too much burocracy sht with it. What do you guys think?

you can avoid compliance and stuff like that if you try hard enough

what do you mean? I have the feeling that my bosses only care about compliance

Compliance ew

it sounds like you should pass on the role tbh

IT Security Representative (to me) will likely be a role that deals mostly with compliance and working with your government which is little technical work

@cosmic ingot Look at mitre attack for general recommendations and you really need to have concrete suggestions for how to remediate the things you exploited. That is the point to give them guidance on how to prevent an actual attack using your methods. I'm not a security professional (yet), but I do know if you can't help the blue team remediate the vulnerabilities you found you are not giving the client the value they deserve. Having said that, if you know what exploits you used you should be able to look up the details on them, and be able to have remediation suggestions. I think that is the secret for the interview, as it does not matter what the exploit is, you should be able to search for the remediation. Mind you, you should not have to lay out each and every step, it should be similar to follow the steps from mitre attack for this, and/or update this software, or this detection rule/rule set. This is why I'm trying to learn both sides of security well enough to understand the thought process behind attack and defense, as in my mind you are not going to be a high performer in one without understanding the other.

Ohh a paragraph!

I work in a forensic lab that has ISO accreditation. It's horrible....

@frigid niche thanks for your answer. And yes, it definitely benefits both blue teams and red teams if they cross train

Learning this stuff is definitely a team sport.

Hey guys, I am looking for advice. I do CTF with THM and HTB since like 10 months and enjoy it a lot. Recently the company where I work as software developer posted a job position looking for a "IT Security Representative" in order to implement a ISMS and get the ISO 27001 Certificate. I would really enjoy to work in security the likes of THM, but I am afraid this ISMS/ISO stuff brings too much burocracy sht with it. What do you guys think?
@dense shell if you need help with implementing ISMS and stuff feel free to @ me . I see it as a good opportunity to develop some skills and have knowledge of the business as a whole

i took the opportunity and helped maintaining the ISO27001 accreditation for the company i work for, but i can tell you i learned a good deal of things that will help me in the future

That's my opinion, people look for a bit of compliance the more senior role you apply for

Those are my 2 cents on the subject

I have a SOC Technician interview on Thursday (entry level). Does anyone have any tips or what to expect?

i’m gonna assume you’ll get some network questions

so make sure you know common protocols/ports

Odd question but I’m studying for Cyber Security and wondering just some motivational things people do? when the scripting gets dull and primary the networking

I feel like this is more of an #infosec-general or #general question

OH

Eh

Thanks for the tip. Totally did not think of the obvious

do you think a profile picture on linkedin is really very important?

if you're using it to actively connect with potential employers, yes

I'd make sure it's a decent picture of yourself in case it is something someone could search

but if it's not a major part of your job hunt, I wouldn't put a huge amount of effort into it

Not sure about now but it was very useful when I could network in-person, makes it easy to recognize people at meetups, coffee meets, etc.

oh definitely in that sense

someone should be able to recognise you from the photo

but I've seen advice that tells people to go ALL OUT on their linkedin stuff and it's just like. no. you don't gotta.

I would be interested to hear any experiences from folks who've achieved the CompTIA CySA+ certification.
If you already worked as a blue teamer, did you have to review/learn much additional info to pass?
If you didn't already hold a position performing these functions, did you find yourself having to invest a significant amount of time in preparation?
(acknowledging that everyone's experiences vary)

I took it as part of their beta with no study no blue team experience, there was clearly a heavy focus on certain topics and it was challenging, but not difficult

but I've seen advice that tells people to go ALL OUT on their linkedin stuff and it's just like. no. you don't gotta.
@turbid cypress I don't know what you mean by "all out" but I got some similar advice from the program I'm currently going through, always with the aim of achieving maximum visibility. Thanks for your feedback. I'm not planning to 😛

yeah, a lot of people go for maximum visibility on linkedin as the best possible way to network, and honestly you really don't need to at all

Just had my SOC Analyst interview

How did it go?

i always hate the certain situational questions

i feel like "follow whatever the company policy states" is a bad answer

My response was firs to make sure it isnt a false positive and to quarantee the file until further notice. Which was actually the preferred answer :)

noice.

I hate technical questions

did they throw any wrenches in there?

I hate behavioral questions

I hate all questions

Would be super cool if I do get the job

Anyone here works in SOC?

Im glad one of the guys knew about this platform tho :)

That was cool

Spooky does a bit of everything he’s not directly a SOC analyst though

Cool. Never know, i might need some pointers in the future

I thought someone else said they got a SOC job recently

I think it was Droogy

yeah

https://www.comptia.org/blog/comptia-pentest-dod-approval

CEH is now redundant

ayo

i also work in da soc actuaL

holy crap thats awesome!

i was hesitant on pentest+ because it didn't seem technical/practical seemed to focus on the management of a pentest, but def will be nabbing that after sec+

I think it was Droogy
@unreal arrow just a lowly jr. sysadmin, I have some overlap with SOC roles but that's something I would like to transition to full-time

im trying to get myself a lowly jr sys admin gig right now

it's a process. got yrs in help desk and just got my security+

you'll get there, in my case certifications got me over the hump plus being rejected 100+ times

Noice

haha yah, just had my first interview since passing my exam. im hoping for the best rn

@keen forge Which exam? 🙂

passed security+ oct 21

i was gona go for my vcp but kinda got bored studying for it

Have a role 🙂

haha thx

Weekly careers thread https://www.reddit.com/r/tryhackme/comments/jxcau1/careers_questions_weekly_thread/

Why hello there

General Kenobi.....

The wait is killing me...

@ancient prairie i interviewed for a soc gig

nice! how did it go

Moved forward....

Will know for sure soon, I hope

make sure you send a follow-up e-mail thanking them for the interview tomorrow, little things will set you apart if they're stuck on a choice

did they ask any scenario questions?

like 'if x happened, what would you do'

Good idea. Thanks for the reminder.

It was a good experience, nonetheless

best of luck, just be prepared for a second round of interviews, not sure if they specified they will make a final decision before they speak to you next - 2nd round is usually more technical too

praying for you. im in the same boat. just waiting for the answer onw

5 interviews they put me through smh

Five? That is crazy.

yah, they were all relatively short but still. 2 with hr. 1 technical with sr and director. then last 2 were with ceo and with a guy who would be under me

Quite a lot.

What would you guys say is the easiest/most baseline certification I could get in CyberSec? I’d love to be able to have something official to put in and give me a step up in my college applications

yah i agree. kinda made me not want to be apart of the company anymore lmao

but im still praying i get the job as it will be big boost to get out of help desk finally

@warm coral i think security+ is a good start

alright, ill look into it

thanks:)

CompTIA Security+ is good.

What should I study for it?

Looking at this: https://www.comptia.org/training/certmaster-learn/security

Worth $500?

I used the Darril Gibson book

That's all you truly need with some supplemental stuff

wait I just realized they just launched SYO-601 like a week ago

I just passed mine oct 21

the 501 doesn't expire until summer of 21

i've been using testout for all of my CompTIA stuff, would highly recommend that platform

501 also has more materials to study so that's what I'd do

@warm coral also if you are a student (have a .edu e-mail) use the academic store, it saves you a boatload of money https://academic-store.comptia.org

My high school doesn’t have a .edu email but my sister has one

Thanks

Oh jeez

TestOut is doing a black friday deal

$5 for the first month

i would buy the year license if you can as opposed to their subscription model, unless you are focused enough to bang out the course and the exam in a short period of time, but thats a good deal try it out and see if you like it

talk to support at comptia I'm sure they could be accommodating if you show them some sort of proof that you're a student, plus pentest+ just got DoD accredited which is pretty big news, means CEH and some other certs might get phased out in favor of pentest+

looks like i dont need .edu

so should i go for security+ or pentest+?

both, but security+ first, that has foundational knowledge and is a building block for pretty much anything infosec-related

depends on how deep you are in the field

good to know for the .edu tho

I have no certs and am going straight for OSCP 🤷‍♂️

yah, im tryna decide what route i should go now that i got my security+

sec+ and pentest+ are very different certs however I would almost go straight for pentest+

ccna, pentest, or cissp

depends if you wanna do federal contracting

would thm be any good for sec+

any rooms yall recommend

sec+ is more theoretical, you learn about attacks but you certainly won't have to know how to execute them

theres really not a whole lot i could recommend on THM for this, probably Easy Challenge rooms would have some good learning stuff

@keen forge depends if you want to do federal contracting

yah idk, i just want to learn something to get out of help desk lmao

i’d say sec+ is better than pentest+

DoD approval is a game-changer for pentest+ tho

if you already have help desk exp & sec+ you should start hunting for jobs now, and look at all the internships that have moved to summer 2021

you have enough on paper for an entry-level job, just have to play numbers

idk, it'll be weird to going full time help desk to internship

but I am. just finished interview with jr sys admin gig. waiting for response

Hey. If any of you guys are Australian, sectalks Canberra is doing a give away that might help you put down more quals in your resume: https://twitter.com/SecTalksCbr/status/1329630285399425024?s=19

@tribal flicker ^

https://www.indeed.com/career-advice/finding-a-job/highest-paying-it-certifications

if you already have help desk exp & sec+ you should start hunting for jobs now, and look at all the internships that have moved to summer 2021
@ancient prairie This is my game plan haha I was thinking of taking my CCNA over Pentest+ but not so sure now but i have been applying to a bunch of security analyst positions

^ same exact spot as you rn haha

good luck if you decide to go with CCNA but keep in mind it is really difficult, it has something like a 95% fail rate and involves months of studying and labbing

not trying to discourage but just know what you're getting into, but you pass and you'll basically always have a networking job!

oh i did not know about the 95% fail rate LMFAO

but figured it is really heavy on content

only fear trhat number if u plan on failin

im apart of da 5 percent

or will be 😄

I can attest to the amount of time you need for studying and labbing

I had two modules that ran across the uni year for two years on it

For CCNA

• the independant study and assignment work. Granted those modules were also 20% general networking. But nontheless, a lotta time spent on CCNA

CCNA v7 has like 17 sections and it's difficult to manage it with university xD

what vulnerability scanners do yall recommend?

Nessus

If you're not working somewhere OpenVAS is ok.

i find that 95% fail rate to be a bit 🤔

the fail rate on CCNA R&S was pretty high, but not 95% high lol. Maybe 75%?

CCNA v7 has like 17 sections and it's difficult to manage it with university xD
@lofty apex I only get 6 months at university to learn both the CCNAv7 and the CCNA Security, alongside with everything else throughout the year

20 years later and I'm still salty my CCNA had ISDN on it... multiple questions, but I digress. I think it really depends on you, I don't think a 95% rate seems right, my company puts all network people through CCNA and I never hear of anyone failing

yeah the 95% is definitely a bit gimmicky, but they say that it's the case for 1st-timers to the exam but I'm betting there's some other metric they aren't mentioning that accounts for the 95%

either way, not an exam to take lightly tho

nah lots of memorization

im still salty mine talked about SDN

CCNA was one of my most proud passes tho

why salty about SDN?

Hey a quick question I'm looking to get a networking cert as my first cert which one should I go for CCNA or net+ or some other....Also I see CCNA has R&S cyberops and some others too so which one should I prefer being a beginner as well as good valuable cert to my CV?
Thanks:)

I think I don't wanna begin with eJPT I want to have a networking cert first if that's wrong approach please point out(I want to be penetration tester networking cert is just for a good solid base)

From the talks about CCNA at the top. Net+ is your better starting point.

But then again, IDK your knowledge

ok thanks which course in CCNA would be better?

What do you mean by which course in CCNA ?

Routing n switching/cyberops/security

CCNA has replaced Routing and Switching , cloud , secuirty and all with only CCNA v7

https://www.cisco.com/c/en/us/training-events/training-certifications/certifications/associate/ccna.html

The new ccna test has no labs tho