How to get into Penetration testing?
- From: Gurminder <gureek@xxxxxxxxx>
- Date: Mon, 3 Jul 2006 15:24:36 +0530
Hi,
It was quite an interesting post, Actually I am also in the same ship.
I have got 1 yr of experience in Network development and basics and
aim to work as a freelance pen-tester.
Currently I am in Bangalore India.
I want to know do CEH certification still has that reputation, which I
can use to get my assignments.
Or its just a certification for name sake.
Do I really need such certifciations, Although I am B-tech Engineer
and have knowledge of pen testing
but exp is less.
How do I approach the clients for this? Or how to get oursourced
work from big consulting firms?
Please guide me in this journey.
I hope to get valuable suggestions from the community.
Thanks
Gurminder Singh
On 6/24/06, Alice Bryson <abryson@xxxxxxxxxxxxx > wrote:
hi Guy,
I think it is very good for a pen tester to have programming
experience, for you may understand why the test success or failed, not
only repeat the test procedure.
but Java might a too high-level language which hide a lot of
implement details. i suggest study Assembly language, C. These
language are very important for understand and exploit vulnerability,
at least i think so.
And something about work experience. i have been working as a pen
tester for more than 1 year. before pen tester, i am a AntiVirus
analysis. No one born with work experience, if you can't get an offer
of a pen tester, you may try a relative position, like network
security company's position.
12 Jun 2006 11:24:05 -0000, rahul.joshi2@xxxxxxxxxxxxxx
<rahul.joshi2@xxxxxxxxxxxxxx>:
> Hi Guys,
>
>
> Apologies if this has been asked before (and if this is posted in the wrong thread) but I am seeking advice on how to get into a career in Pen. testing and IT security.
>
>
> I am based in the UK and have been a Java developer for the last 2.5 years after leaving university. However security is where my interest lies and I would like to get into this sector.
>
>
> My question is how? I have looked at many job adverts for pen. testers however they all require people with 1 years+ experience in the field.
>
>
> Should I pursue a certification such as the CEH first? Or are there other ways?
>
>
> Your advice and suggestions would be greatly appreciated.
>
>
> Thanks
>
>
> Rahul
>
--
Homepage: http://www.lwang.org
mailto:abryson@xxxxxxxxxxxxx
---------------------------------------------------------------------------
This list is sponsored by: Norwich University
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
---------------------------------------------------------------------------
This list is sponsored by: Norwich University
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
- Prev by Date: Re: 'Read only' Admin privileges for Active Directory environment?
- Next by Date: Security impact of disabling SSL closure alerts from Server?
- Previous by thread: Re: 'Read only' Admin privileges for Active Directory environment?
- Next by thread: Security impact of disabling SSL closure alerts from Server?
- Index(es):
Relevant Pages
|
|
