Right on man, keep it up

Hlw bro.....tc great

Good luck! You’ve got this

Good idea, I think that could use its own video. For now I'll say the OSCP focuses more on the methodology of vuln discovery, finding an exploit, tweaking exploit, gaining access, and escalating privileges for separate hosts. PNPT is more of a run through of an AD based pentest from start to finish - OSINT, external compromise, internal foothold, lateral movement, domain compromise, report writing, and brief - similar to what you'd see as a pentester on the job. Both highly valuable in what the exams go over, but two completely different exams

Nice, look into CRTP and a couple of the AD heavy HTB pro labs. They will cover some great AD material

Hey Gabriel, there is section in the course that walks you through setting up your own AD lab to practice each of the modules

Thanks HacksToHack, will definitely get this certification. Since it is much affordable and more realistic scenario.

I use a combination of one note to sync across platforms, cherry tree for local, and sublime for just text. TCM has a pretty thorough template that I use: github.com/hmaverickadams/TCM-Security-Sample-Pentest-Report Also this GitHub repo has quite a few: github.com/juliocesarfort/public-pentesting-reports

Focus on the practical ethical hacking course. It should cover all of the concepts and techniques. Of course, having hands on practice will help you a ton. The other course content is excellent as well and you should definitely work through them, but if your goal is to get the PNPT cert and pass the exam focus on “the Complete Course”

Pivoting between networks can be as simple as compromising a host that has access to another network. The key is tunneling your traffic through the compromised host to touch the other assets within the target network. This can be done through a variety of different methods including ssh, sshuttle, or a c2 socks proxy (like meterpreter) and proxychains. Hopefully these give you a good research start

Right on. How are you liking it so far?

@@hackstohack2767 going slow (me) going good

Take it at your pace, but be consistent with it. This material gets easier to consume as you keep growing and learning. My only suggestion would be to touch it everyday, even if it’s just a little

@@hackstohack2767 gonna do that , thanks bud

You’d be amazed at just how many passwords inside corporations are on wordlists like seclists and even rockyou.txt. I’d be more surprised if I didn’t crack a single one on an engagement with a wordlist and added rule set. Happens all too frequently and is very real-world

Correct. but then you're never going to crack a 14 digit random password. If the target company effectively enforces such passwords then that particular attack vector is closed off. But of course pen testing is about showing them the weaknesses in their protocols and systems. If the company has none then they would get a report telling them that. There would be no point insetting an exam testing network with perfect security - you'd have to engineer some kind of zero day exploit. You're being given one with weaknesses to see if you can find them. Companies struggle to enforce password rules. Must be 12 characters including capitals, lowercase, numbers and alphaumeric? Password-123 fits all those requirements. If there is a lazy way to get around a company rule, it will be used.

Mixture of OneNote, cherry tree, and sublime

You’re going to want to start applying what you’ve learned so far from KZbin, and get your hands on keyboard. Tryhackme is a great place to start, and definitely hackthebox. If you’re looking for a beginner friendly cert, ejpt is awesome, and the course is available for free from INE I believe. I generally recommend against the sec+ and CEH because you’re learning to pass their test and answer multiple choice questions, which is far from real world. Practical and technical hands on experience is king. You’re going to want some before taking on PNPT. That being said, his practical ethical hacking course is very beginner friendly, and everything you need to pass the test is in the course. But it might be like riding a bike the first time if you’ve never applied these concepts before.

This is a full simulated environment with multiple users. If you’re comfortable with the course content after running through it, and your notes are good, take a stab at it! There is no “right time”. Worst case you saddle up again and take a retest. In my experience, the more practicals and labs you do, the better you become. It’s all just added experience

Thanks John!

Yep, you write a full report as part of the exam. Technical evidence and screenshots are part of it

OSCP does not have a brief where you present your report to a live board. It was definitely a cool addition

Oh yeah, it’s open book and open internet. If you’re not googling as a pentester you’re probably missing something. That or you’re a wizard

@@hackstohack2767 Thank you very much for the response. I am currently preparing for the exam as well, so that is very good to know!

It’s all self paced so it’s really up to your learning style. The material is definitely beginner friendly so you’re starting in a good place. Take your time with it and move at a speed where you’re digesting the material. You want a strong foundation for pentesting knowledge because it only ramps up in difficulty. Good luck with your studies!

You can get a cert for two reasons: 1. To get the recognition of completion, 2. To learn some incredible knowledge. This cert is heavy on number 2. The best certs out there (few and far between) are the ones that combine reasons 1 and 2. There is no doubt in my mind that this one will get there. Hope that helps

Should be. All the topics and techniques are in the PEH course. It does help to have additional AD experience, and know what to look for, but the PEH should give you the foundation for the exam

@@hackstohack2767 thanks for the info, 🙃. Can you provide me your any of your social media detail where I can contact you :)

If you work as a pentester, this is a good refresher and a fun challenge. I think this course and cert are most beneficial to those who are just starting out and want to land that first pentesting job

Hands on technical certs are king in terms of leaning and demonstrating knowledge. I’ve never found the material for a multiple choice exam stick around and it certainly doesn’t give the experience needed for day 1 on a pentesting job. I trialed the pentest+ new exam version, and didn’t like it. They want you to know their specific answers rather than being able to figure it out and utilize whatever you can to get your desired output. A lot of pentesting is hacking your own methodology and processes to be able to figure out the solution in any way possible. I’d say put your sights on ejpt first as that one is a great introduction, and look into getting TCMs practical ethical hacking course to read through and practice on the side. It sounds like you have a great base with comptia right now, but it’s time to beef up your hands on technical approach. Hack the box and tryhackme are excellent as well

@@hackstohack2767 Thank you very much I really appreciate the advice!

Everything from the exam is covered in the course material

Really depends on your experience and confidence level. I do this stuff at work, so I breezed through it pretty quick. I’d encourage you to take it at your own pace until you’re comfortable with what’s covered

Hey Leandro, great question. From what I experienced, all the tools and techniques you need to pass this exam are in the course material, plus thorough enumeration, good note taking, and a little creative thinking. I would focus on "Practical Ethical Hacking - The Complete Course" for the PNPT exam.

@@hackstohack2767 thank you for the answer

Of course!

Hey Oliver. I am already a full time pentester with background in network pentesting, web pentesting, and mobile pentesting. The exam is great for all levels - If you are a beginner, the course and exam will give you a great foundation. If you are junior to mid level, it gives you a good challenge and some great examples of pentesting tools and techniques, and if you are senior level, the exam is a good refresher and a way to sharpen your methodology.

He said right at the start that he's been pentesting for 3 years lol

@@zephyfoxy :SadKitty: maybe I didn’t pay attention

Any improvement or any other courses are hearty welcome

If you’ve got the skills, go for the technical certs. I’m not a huge fan of comptia because you’re learning to pass their test. If you’re looking to just get past HR, knock out your pentest+ then keep buffing your technical skills (THM, HTB, PNPT). Getting the course content is one thing, but proving that you can apply the concepts and pass the test will really help you

@@hackstohack2767 hey forgot to check the msg sorry for that , brought his standalone exam I have done his lpe course and doing AD part of his PEH course and wpe simultaneously , and also brought his epp course . Gonna take his exam around this December and test my self (my first cert ) . And I am a btech student completed my 1st year so rn I am not planning on certs like OSCP that bypass the HR maybe in future? Idk . And I want u to review eccptv2 cert and CRTO certified red team operator ❤️, If possible.

Introductory to intermediate pentest difficulty, focusing on a complete pentest from external, to internal, to DA, to report and delivery. Different in its own way from any cert that I’m aware of. Definitely worth the experience

You can go through the material at your own pace. I watched the videos at x2 speed cause I learn best that way. All of the Active Directory material took me a couple nights to get through, but I’m pretty familiar with the content. I think overall there are over 50 hours of course material total

Nope!

DEFCON2021 should work for a little while. 50% off site wide on everything but the exam

Depends on your recon :) the exam/client objectives just say you need to compromise the domain controller. If you follow the intended pathway, there are a good handful

@@hackstohack2767 how good one needs to be for "AD Attacks", i have the COURSE by TCM and the "AD" attacks covered are pretty basic e.g. LLMNR poision, responder usage etc. How hard the exam gets ?

@@skinnyelephant7351 Depends on your experience. What's your background and how familiar are you with AD? If you can compromise a windows host, know how to get the info from it that you need, and know how to utilize that to move through an AD environment, you should be good to go. I don't want to get too specific and spoil any of the challenge. If you've gone through the course and have a good understanding of what is mentioned under the AD sections, you should be ready to go. He doesn't try and trick you in the exam, more of an application of the concepts in the course

Lol can never have enough of those

You can get you a job. This course and cert could help

@@hackstohack2767 bro ceh exams are bad but I can take them books to learn buy will not attend exam I have that pdf of the book is that good

Certs show that you have mastered the material and can see something through to completion. I agree that the CEH exam isn’t the best, but it will at least get you past a HR barrier. There are plenty of other ones, like the PNPT, that I would recommend over CEH. If your goal is an entry level pentest position, get as much technical lab experience and technical certs that you can. Hands on keyboard is everything

I really enjoy elearnsecurity, especially with their newer updated payment model. The ejpt is a fantastic intro to get first introduced to pentesting topics at an affordable. The ecpptv2 was a very beneficial course and the exam is a good stepping stone on the path to OSCP. I’m looking into their expptx exam now and have heard mixed reviews. I’m going to try and put a video out on that one in the future.

@@hackstohack2767 Thank you so much for this reply. Really appreciate hope to see more vids. Your channel is awesome!