Professional Documents
Culture Documents
Vulnerability Assessment:
OWASP Top 10
Business Logic Vulnerabilities
Default/Weak Credentials
API Testing
WebSockets Testing
Sensitive Information Exposure
Tokens/Keys Security
MFA/2FA/OTP Bypass
CMS Testing: WordPress, Drupal, Joomla, and so on.
E-Commerce Pentest: WooCommerce, BigCommerce, Magento, OpenCart, plus more
Mobile Applications Penetration Testing:
Lockpicking
Dumpster Diving
Tailgating
RFID Tag Hijacking/Impersonation/Spoofing
Shoulder Surfing
Implant Malicious External Devices: Rubber Ducky, LAN Turtle, and so on
+ more
Social Engineering Penetration Testing:
Phishing Attacks
Vishing Attacks
Smishing Attacks
Client-Side Attacks Manipulation
+ more
Red Team:
After some time, I’ve thought that I could possibly make a “legit” career in
Penetration Testing, but my chances were impossible to get a job, because I had
zero prior experience (I don’t think it is a good idea to count inadequate
activities on the resume 😅), and no certifications at all. So, what have I done?
It is not enough to have a passion or a little drive for this. Remember, most of
the time, passion is temporary, love is forever. You have to think that this will
be your lifestyle. Loving it will make you push harder through those days when you
feel low, without any energy left inside, and it will make you stand up after any
of your disappointments encountered during this journey.
You have to make sacrifices, you have to put in the hard work and the grind, to
become a good Penetration Tester. Practice, practice, and practice!
Sometimes, it will be hard to see all of your friends partying and feeling good on
Social Media, while you are staying home, trying to crack that HackTheBox machine,
practicing for OSCP or learning about SQL Injections, but remember how worth it
will be in the end. Think about the long-term.
Networking
The Cyber Security community is one of the greatest. You can learn so much from a
lot of people, so go on LinkedIn, and ask for suggestions, recommendations,
references, or even storytelling. I am sure that you will find someone who can help
you during your journey.
CompTIA PenTest+
EC-Council Certified Ethical Hacker (CEH)
EC-Council Licensed Penetration Tester (LPT)
Offensive Security Certified Professional (OSCP)
Offensive Security Experienced Penetration Tester (OSEP)
Offensive Security Exploitation Expert (OSEE)
Offensive Security Web Expert (OSWE)
GIAC Certified Penetration Tester (GPEN)
Mile2 Certified Penetration Testing Consultant (CPTC)
Pentester Academy Certified Red Team Professional (CRTP)
eLearnSecurity Junior Penetration Tester (eJPT)
eLearnSecurity Certified Professional Penetration Tester (eCPPT)
eLearnSecurity Mobile Application Penetration Tester (eMAPT)
eLearnSecurity Web application Penetration Tester (eWPT)
IACRB Certified Expert Penetration Tester (CEPT)
Learning through Practice
The most efficient way to learn Penetration Testing is through practice, but first
I would recommend getting familiar with the following:
Metasploitable
Hacksplaining
PentesterLab
HackTheBox
TryHackMe
VulnHub
Root-Me
DefendTheWeb
OverTheWire
Hacker101
How to get your first Penetration Test project or job
Now you have the skills and certifications, but how can you get your first project
or your dream job as a Penetration Tester? It’s easy to apply for a job, but here
we will discuss some techniques that will increase your chances of being hired or
being contacted for a pentest.
Through LinkedIn
Through GitHub
Do not hesitate to upload your scripts, side-projects, or anything that you can
think will be useful for the community on your public GitHub profile, and share
later on social media.
Some companies have a vulnerability disclosure policy, which means that you can
search for vulnerabilities within their products/applications. Good work will never
be forgotten, so there will be greater chances to be hired by a company that you
have already reported some security flaws to.
There are a lot of people looking for experts with your skills on platforms such as
Upwork, Fiverr, PeoplePerHour, Toptal, Freelancer.com, and more.
Closing
It is a very hard journey that never ends, technology is evolving, and cyber
threats are increasing. If you think that this is not for you, then you are totally
wrong! With a bit of pain and sufferance, you can make it. Do not forget to stay
humble along the road, and give back to the community once you have an opportunity.