I'd personally rather use the free Web Security learning paths on Portswigger. But if people out there like e having a certification to back up their knowledge, don't let me discourage you.

Heyy Buddy what's upp I have blocked by hack the box it's says "you tried to do something funny to our platform." Do you know any solution for this problem. Thanks 🙏

Clearly you've not seen much of John Hammond's content then. It's just that usually you don't notice it's an ad.

multiple ads too i think? noticed the sneaky obsidian ad? he is getting professional with it

More like super sayan

​@@UnderScorePTexactly

You can get cubes on a monthly basis with one of the subscriptions, then just get the exam voucher when you're ready

yes :)

@@_JohnHammond nice. Thanks

You should probably start with the CBBH and/or CPTS first. CWEE is an advanced cert

Did you get the certs tho? Or did you just take the exam.

@@smnomad9276 yeah i got both CBBH and CPTS certs. HTB is really stepping up their game!!

​@@smnomad9276 yes I do have both CBBH and CPTS certs and I highly recoomend both paths. I think both certs are the best in the market currently.

@@smnomad9276 yup I have both the CBBH and CPTS certs :)

Yea, I would like to see some ideas how to organize your notes especially because I am returning to learn again about hacking and this time would like to make some notes and be more proactive about learning and have that knowledge saved somewhere for fast referencing

It’s half the price compared to OSWE. I’m currently taking OSWE and it’s a vastly different experience. HTB more walks you through it and gives you “quick challenges”along the way. Whereas OSWE will walk you through it, then give you big challenges at the end. If you haven’t taken HTB courses before, I’d recommend the Bug Bounty course by them, then going into the CWEE. I’ve taken 2 courses from CWEE so far, and it was much more methodology based vs “here’s a vulnerability. Replicate the exploit on a different codebase with more security measures in place”. Which makes it very less challenging and more engaging. OSWE (in my opinion) becomes mind numbing and frustrating when you can solve the challenge, and there is little to no help because “it’s a challenge machine”. Guess I need to “Try Harder” TLDR: Both are fun and you’ll learn a lot. CWEE is cheaper and covers a lot of information. OSWE is currently more “recognized” - but that’s changing.

There will be some overlap obviously, but OSWE is much more refined and deals more specifically with analyzing and locating vulnerabilities in code. As for what's "worth" more, I doubt either really have a positive ROI in terms of jobs. OSWE would definitely be a better resume addition because it's more known, and if you can pass CWEE you probably already have the skills to land a web app pentesting job or already have one, and adding CWEE to that experience isn't going to net you any more salary. Most certs are just a profitability mechanism for the company who issues them, and feed on peoples desire and need for gamification. There are very very few that are actually worth the cost in terms of what you can expect to make because you have said cert. So really, you should only do them if you enjoy them and that's what helps motivate you to learn and continue to improve, in which case, pick which ever one interests you the most.

@@Daniel-ng8fi Thanks Daniel.

It's already cheaper than OffSec's prices and there's occasional discounts throughout the year

You'll have to contact their support

No, you get a few cubes to start learning for free. The Tier 0 content costs 10 cubes per module and you get those back on completion. You need to buy cubes/subscriptions for the higher tier stuff. But yes, it will cost money to take their more advanced courses. They are a company.

@@verduoh yeah but higher tier is actually useful, you have linux basics for 10 cubes, I have used gentoo and arch for 8 years now so it's useless for me

you can get like more than half the content in academy for 8 dollars a month if you have a student email...