Results 1 to 8 of 8

Thread: How to get started in Pen testing

  1. #1
    Junior Member
    Join Date
    Aug 2008
    Posts
    32

    Default How to get started in Pen testing

    Hello,
    I have been playing with BT3 for a couple of months now and really enjoy it, it has become really a Hobie for myself. But I want to make a change in career field towards pen-testing or some other IDS related job. Right now I am just a "help desk," person for a non-profit organization. I able to play around with BT while on the job, (nothing dangerous...we learned the hard way..). But this is something I want to continuously do. My degree is in network security, which I am working on the bach's right now. So my question is what type of choices should I make in order to complete my goal to become a Pen-tester or other related jobs (thats another question too,.....what other jobs are their that relate to pentesters?)
    So do I need certification? What title should I look for entrt positions? What other programs or IDS do I need to learn? Recommended books, besides Syngress Pentester Book. And any other helpful advice is appercaited.
    Thanks Kilo

  2. #2
    Senior Member
    Join Date
    Apr 2008
    Posts
    2,008

    Default

    I think you will find this recent thread interesting:
    http://forums.remote-exploit.org/showthread.php?t=17090
    -Monkeys are like nature's humans.

  3. #3
    Very good friend of the forum hhmatt's Avatar
    Join Date
    Jan 2010
    Posts
    660

    Default

    Quote Originally Posted by kiloraw View Post
    Hello,
    I have been playing with BT3 for a couple of months now and really enjoy it, it has become really a Hobie for myself. But I want to make a change in career field towards pen-testing or some other IDS related job. Right now I am just a "help desk," person for a non-profit organization. I able to play around with BT while on the job, (nothing dangerous...we learned the hard way..). But this is something I want to continuously do. My degree is in network security, which I am working on the bach's right now. So my question is what type of choices should I make in order to complete my goal to become a Pen-tester or other related jobs (thats another question too,.....what other jobs are their that relate to pentesters?)
    So do I need certification? What title should I look for entrt positions? What other programs or IDS do I need to learn? Recommended books, besides Syngress Pentester Book. And any other helpful advice is appercaited.
    Thanks Kilo

    This is a topic that has been covered many times in these forums.
    Search and you shall find.

    http://forums.remote-exploit.org/sho...02&postcount=5
    http://forums.remote-exploit.org/showthread.php?t=15442

    http://forums.remote-exploit.org/showthread.php?t=16128
    http://forums.remote-exploit.org/showthread.php?t=10158
    http://forums.remote-exploit.org/showthread.php?t=8649

  4. #4
    Junior Member
    Join Date
    Aug 2008
    Posts
    32

    Default

    I forgot, about checking this forum......my bad

  5. #5
    Junior Member
    Join Date
    Aug 2008
    Posts
    32

    Default

    Tron thanks, my bad again for not checking the forum.

  6. #6
    Very good friend of the forum hhmatt's Avatar
    Join Date
    Jan 2010
    Posts
    660

    Default

    http://forums.remote-exploit.org/sho...73&postcount=5

    I found these books to be very helpful in learning pentesting also. I was originally looking for this post.

    I also would suggest learning how to program in several languages including many scripting languages. IE: C/C++, Java, Python, Perl, Bash Scripting.
    Knowing some Assembly doesnt hurt either.

    If you have just started I would say learning linux is step 1 and a very important step. There are many posts about this topic since many newbies decide that they can just jump right into BT without any prior linux experience, BT is not for newbies. I found slackbook to be very helpful here.

    Also be prepared for the time that you will be investing in learning penetration testing.

  7. #7
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default

    Check this thread from last week:
    http://forums.remote-exploit.org/showthread.php?t=17090
    Edit: Doh...looks like someone already point out that link.....

    As always knowing the law applicable to the thing you're interested in is always a good thing as well, here's something I posted in another thread:
    IronGeek has a good summary of some US & State laws here:
    http://www.irongeek.com/i.php?page=c...e-hacking-laws

    There's a brief discussion about some Canadian law here:
    http://forums.remote-exploit.org/sho...43&postcount=8
    (Canadian Criminal Code, Bill C-46, Sections: 326, 342, 430, etc)
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  8. #8
    Junior Member
    Join Date
    Aug 2008
    Posts
    32

    Default

    Hack to learn, or ask and expect a smart ass answer from someone. That is the motto

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •