I think you will find this recent thread interesting:
http://forums.remote-exploit.org/showthread.php?t=17090
How to get started in Pen testing
Hello,
I have been playing with BT3 for a couple of months now and really enjoy it, it has become really a Hobie for myself. But I want to make a change in career field towards pen-testing or some other IDS related job. Right now I am just a "help desk," person for a non-profit organization. I able to play around with BT while on the job, (nothing dangerous...we learned the hard way..). But this is something I want to continuously do. My degree is in network security, which I am working on the bach's right now. So my question is what type of choices should I make in order to complete my goal to become a Pen-tester or other related jobs (thats another question too,.....what other jobs are their that relate to pentesters?)
So do I need certification? What title should I look for entrt positions? What other programs or IDS do I need to learn? Recommended books, besides Syngress Pentester Book. And any other helpful advice is appercaited.
Thanks Kilo
I think you will find this recent thread interesting:
http://forums.remote-exploit.org/showthread.php?t=17090
-Monkeys are like nature's humans.
Originally Posted by kiloraw
This is a topic that has been covered many times in these forums.
Search and you shall find.
http://forums.remote-exploit.org/sho...02&postcount=5
http://forums.remote-exploit.org/showthread.php?t=15442
http://forums.remote-exploit.org/showthread.php?t=16128
http://forums.remote-exploit.org/showthread.php?t=10158
http://forums.remote-exploit.org/showthread.php?t=8649
I forgot, about checking this forum......my bad
Tron thanks, my bad again for not checking the forum.
http://forums.remote-exploit.org/sho...73&postcount=5
I found these books to be very helpful in learning pentesting also. I was originally looking for this post.
I also would suggest learning how to program in several languages including many scripting languages. IE: C/C++, Java, Python, Perl, Bash Scripting.
Knowing some Assembly doesnt hurt either.
If you have just started I would say learning linux is step 1 and a very important step. There are many posts about this topic since many newbies decide that they can just jump right into BT without any prior linux experience, BT is not for newbies. I found slackbook to be very helpful here.
Also be prepared for the time that you will be investing in learning penetration testing.
Check this thread from last week:
http://forums.remote-exploit.org/showthread.php?t=17090
Edit: Doh...looks like someone already point out that link.....
As always knowing the law applicable to the thing you're interested in is always a good thing as well, here's something I posted in another thread:
IronGeek has a good summary of some US & State laws here:
http://www.irongeek.com/i.php?page=c...e-hacking-laws
There's a brief discussion about some Canadian law here:
http://forums.remote-exploit.org/sho...43&postcount=8
(Canadian Criminal Code, Bill C-46, Sections: 326, 342, 430, etc)
I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.
I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.
Hack to learn, or ask and expect a smart ass answer from someone. That is the motto
Posting Permissions