Another week has flown by and I am really starting to believe that doing eJPT was the right way to go forward. I have spoken to a few people over the week who are either doing eJPT or have completed it. Majority of them have said do the labs religiously! Honestly speaking they have hit the nail on the head! eLS labs are amazing! I finally got what I wanted, which is to do the practical side.
What have I done so far?
Ok so first of all just a quick recap of the week. I managed to study approx 16 hours this week. Time really does fly when you are doing labs! I have done 12 labs, I really flew through the first 5 just in pure excitement.
The labs are fun, practical and give you great experience. You get given a pdf file with a scenario and a goal – they are broken up in small tasks. The way I do my labs is that I open the study material provided for the topic and have a quick read through. Then I attempt to do lab without looking at the solutions. It can get tricky because you don’t know if you are heading the right way or not but I definitely enjoy just playing around and try to explore as much as I can. Once I confuse myself enough or get stuck I read the solutions. I will then attempt to re do the lab. IF I really get stuck then I will just do step by step with the solutions. I definitely want to revisit these labs again (at least once), therefore for every lab, I open a new child page on KeepNote and keep adding notes and hints for my next attempt.
The labs I have done so far are custom made for certain tools and types of attacks. So far the labs have been
- Traffic Sniffing (wireshark)
- Finding Secret Server
- Data Exfiltration
- Burp Suite Basics
- Burp Suite
- C++ Assisted Exploitation
- Python Assisted Exploitation
- Scanning and OS Fingerprinting (Nmap)
- Cross Site Scripting
- SQL Injection
I have really enjoyed them. My favourites have been the last 5 though, you really feel the transition in the difficulty and that’s credit to eLS for setting them up in such a way. I have spend extra time on scanning and OS fingerprinting lab, I believe learning to scan using nmap is really important as this is what will set up a good platform for you to further explore.
I was really glad to see Nessus as a lab too. Quick tip for anyone doing the labs – download and set up Nessus before entering the lab as it can take some time to set up.
I would love to talk about every single lab but it could really take some time so if you do have any question regarding a lab just drop me a message or comment below!
Before I finish this week’s blog I also want to bring up the forum which you get access to as an eLS member. The community is really helpful and if you do get stuck anywhere there is always advice and tips for you. I got stuck on the cross site scripting lab so I thought I will have a read through the forum and I found out there was a technical glitch in the lab and how to overcome it. So overall I am really happy, the labs are fun and the forums are great help! At this stage I really cant ask for anything else, just got to keep my head down and keep going.
The plan for this week is to complete all the labs, I have the elite version so I get 3 black box pentesting labs which I am looking forward to and hoping to do next weekend. I think the 3 final labs will really tell me where I stand regarding the exam.
I hope you all have a great week, if you are doing the eJPT course good luck, keep smashing it!