if Burp suite cert includes Code review it becomes most powerful certification
@daniellowrie Жыл бұрын
An interesting thought. Are you talking about a Burp module that would access the back-end code directly so the tester can do SAST?
@TyrellJoanna3 жыл бұрын
Hello 👋 Daniel, once again a super informative video. I will definitely take the exam.
@daniellowrie3 жыл бұрын
Thank you so much, Nhil! Yeah, it's not 'if' but 'when' for me too 👍
@thelandoftwitchclips Жыл бұрын
dude this is the video I wanted to watch... I suck at testing but I'm so good in the skills section. I can't pass the security+ but I can do an MBA presentation on cybersecurity without chocking.
@daniellowrie Жыл бұрын
Life can be very strange in that way sometimes. Hopefully you slay the Sec+ next time! We're all rooting for you 👍
@siheedsalaam47122 жыл бұрын
Just passed my Security plus thanks to him and ITPRO TV 💪🏾
@daniellowrie2 жыл бұрын
Nice work, Siheed!!! Congrats on the win 🦾
@BobBob-qm2bm2 жыл бұрын
Another good vid Dan. Keep cranking them out.
@daniellowrie2 жыл бұрын
Thanks, Bob! I'm hoping to get some new content out this/next week, so keep a look out.
@emanuelepicariello2 жыл бұрын
Thank you for this video, very informative. I’m going through the certification in few weeks
@daniellowrie2 жыл бұрын
Thanks, Emanuele! Best of luck to you on the exam!
@marcosj8093 жыл бұрын
Love your channel man i think you should do videos like interviewing others pentester and let them talk about how they start in security, stuff like that🙂 ill be glad to tell my story if that's also possible 😛😛
@daniellowrie3 жыл бұрын
Funny you should bring this up as I was just thinking about that. I will keep you in mind as a guest for sure 😉👍
@softwareengineer92173 жыл бұрын
As always the best from the best 👏👏👏
@daniellowrie3 жыл бұрын
Thanks so much for your support!
@iraianbutech13502 жыл бұрын
Hi daniel, happy to see you in youtube :)
@daniellowrie2 жыл бұрын
Thanks for watching, Iraianbu!
@mj_notme88712 жыл бұрын
Great they are now offering a free trial for the Pro version if you want to do the exam. Also a refund of the $99 if you pass the exam before 15th December.
@daniellowrie2 жыл бұрын
Excellent! Thanks for the info 😃
@DD-hn2jr3 жыл бұрын
Hey Daniel Can u recommend a playlist for networking for learning pentesting
@daniellowrie3 жыл бұрын
Hey Vaggu! I wish I could drop you a playlist, but I just don't have any off the top of my head. If I find one, I'll be sure to let you know 😉👍
@adampiper44292 жыл бұрын
Just a quick note: we don't explicitly monitor whether Burp Pro is used, but Burp Pro is needed to use the Collaborator for exfiltration. Also careful use of the Scanner (Pro-only) should help users to more easily find vulnerabilities. To briefly address the $500 entry point if a user doesn't have Burp Pro: the cert should demonstrate the user's ability to use Burp Suite Pro, so if they don't already have it and are therefore not familiar with its functionality the user is unlikely to pass the cert and is not recommended to take the exam. Perhaps our materials should be reworded to better set this expectation!
@daniellowrie2 жыл бұрын
Hey Adam, Thanks for clarifying! Understanding that this is a 'Burp Suite PRO' certification helps a lot. Many have pointed out that Burp Pro free trial can be obtained, which I was unaware of at the making of this video, so I will making an updated video in the near future 👍 Thanks again for chiming in and helping to clear things up. Cheers!
@brianbauer63612 жыл бұрын
really like the cyber forensics type things is there a good path to get more into that? Gathering evidence and restoring deleted files? Any labs that you know of?
@daniellowrie2 жыл бұрын
Hey Brian! Check out Blue Team Labs Online (blueteamlabs.online)
@ancleasai3 жыл бұрын
Great video thanks !! Is it open book / open internet ? Saw a mention of XSS cheat sheets but no mention as to restrictions.
@daniellowrie3 жыл бұрын
I'm not 100% sure about that either, but it does seem to be that they are letting you use any resource you like, except that you can't ask someone else for help. I would reach out to Portswigger before taking my exam to verify, because I'm paranoid like that 😆
@D3cyd3nt2 жыл бұрын
How does the PortSwigger learning path and certification compare to other learning & certifications such as SANS SEC542 with GWAPT exam, or INE learning with associated eWPT or eWPTX exams?
@daniellowrie2 жыл бұрын
That's a great idea for a episode. We can look at the 4 certs and what they cover, price, exam, etc. Be on the lookout for that in the future.
@jessloke7544 Жыл бұрын
how long to finish all the labs? it got 18x
@daniellowrie Жыл бұрын
Nice work, Jess! I would guess that the time it takes someone to finish would be fairly subjective since everyone's skill level and available time can vary dramatically, but it sure seems like you did well. 👍
@KarlRegal3 жыл бұрын
Have you taken the exam yet? Would love to see a review of it from you.
@daniellowrie3 жыл бұрын
Haven't taken it yet, but it will be done as soon as I can. I also want to take the PNPT from TCM-Sec
@RamtinErKul2 жыл бұрын
@@daniellowrie did u take it?
@daniellowrie2 жыл бұрын
@@RamtinErKul Not yet.
@RamtinErKul2 жыл бұрын
@@daniellowrie I feel like it is a hard one to pass...
@silentreader84262 жыл бұрын
i like his guitar..
@daniellowrie2 жыл бұрын
I do too 😁
@gowthamujjineni84223 жыл бұрын
Do some short vedios also.
@daniellowrie3 жыл бұрын
I absolutely should make shorter videos! I usually think, 'This will be a 15min video." and then it ends up being 40min 🤦♂️😆
@VigneshSahoo2 жыл бұрын
Okay, I have two questions and exact answer for those 2 questions will solve everyone's problem. 1. Can we take the exam using 1-month trail Burp Suite Pro? - Yes (From the comments) 2. How long does the exam voucher valid for? Say, I am purchasing it today. So, for how many days will I be allowed to take the exam? I am asking this because some might take a month to prepare, some 3 months, and some take more..
@daniellowrie2 жыл бұрын
Hey Vignesh, it does seem that you can use any Burp Suite Pro license to take the exam, even the free trial license. To address the exam voucher validity I went straight to PortSwigger's website for their Terms and Conditions ( found here... portswigger.net/web-security/certification/terms-and-conditions#7-payment ) and it states... "7.1.5 Each purchase must be redeemed within one (1) year of purchase by the Candidate completing an examination." I hope that helps answer your questions. 👍
@VigneshSahoo2 жыл бұрын
@@daniellowrie Awesome!! Thanks a lot @Daniel
@Free.Education7862 жыл бұрын
Please make beginner 2 advance level practical live website bug hunting, live website penetration testing, live website exploitation content video series... 🙏 😊 💯✌❤💚💙💜😍😘🤝
@daniellowrie2 жыл бұрын
Thanks for watching, Xtreme-Designs! Glad you enjoyed the content and thanks for the episode suggestions 👍
@DigitalTrendzy2023 Жыл бұрын
#BurpSuiteCertifiedPractitioner
@daniellowrie Жыл бұрын
Thanks for watching and for spreading the word about the BSCP! :)
@oziesiek666 Жыл бұрын
and what will happen if I use pirated version of burpsuite pro ? Did they check it somehow ?
@daniellowrie Жыл бұрын
Not sure if they check for piracy.
@itsfran762 жыл бұрын
Hey guys, does anyone have exp with the web sec academy training? How long to go thru it? Heard different opinions like 3 months 1 year ..
@daniellowrie2 жыл бұрын
It will be different for everyone. It will depend on things like your aptitude and prior experience. I would say, don't worry about time. Just get in there and start learning! You can do it! 💪
@DD-hn2jr3 жыл бұрын
How come less views
@ajithrajendran35163 жыл бұрын
Hi Daniel, Very Informative video. Could you please give some info on how can we get into cloud penetration testing. Like some good courses and resources. After months of trying I got opportunity as a penetration tester. They gave me 1 month to learn cloud pentesting. Could you please help me with some guidance.
@daniellowrie3 жыл бұрын
Hey Ajith, If you're looking for cloud pentesting info, I'd look into Rhino Labs Security. They have a method for spinning up pre-configured cloud resources for learning cloud-based pentesting. I hope that helps
@ajithrajendran35163 жыл бұрын
@@daniellowrie yeah. Its really helpful. I reached out to you via LinkedIn. Thank you! So much
@Aloksheoran5 ай бұрын
Can we give exam with a cracked copy of burp suit pro ?
@daniellowrie5 ай бұрын
That's a question that would be best answered by Portswigger 👍. You can contact them here portswigger.net/support
@robertlean45633 жыл бұрын
you gona take oscp??
@daniellowrie3 жыл бұрын
I feel like it's an inevitability, but time doesn't permit right now. Once I do get some time, I'm MUCH more interested in the PNPT! It's definitely the next pentesting cert on my list! After that, I'd go for the eCPPT and eCPTX.
@ThisIsEduardo3 жыл бұрын
HELL YEA
@daniellowrie3 жыл бұрын
Thanks Pancho! Now that's what I call enthusiasm!!! 😃