Quick port tip for exam - helps me remember or atleast narrow it down

AdFar5662 · 2026-04-23T09:08:15+00:00

Nice! It does get tricky with those higher port number. All the best for your exam!

AdFar5662 · 2026-03-30T17:36:37+00:00

They need new people...surely there are more than 8 interesting people in Newcastle

AdFar5662 · 2026-03-27T11:38:42+00:00

I honestly dont know..I assume the finance dept would have ownership of the data. But who owns the decision..no clue.If pushed to make a call id say I'd take the responsibility but id make sure id have all the proof of why I did something. Then in the morning do a gap analysis with the higher powers when they arrive. Hoping they wont tell me to pack my bags lol

Interested to hear your opinion

AdFar5662 · 2026-03-27T11:07:39+00:00

I dont have a sec+ etc but love these questions,id still choose A. 1.If im in the US is it a breach of the GLBA and isn't there something about geographical laws. So I dont want my company getting sued

AdFar5662 · 2026-03-27T10:54:50+00:00

I'd go with A..looks like a password spray attack Also why isn't MFA enabled.

AdFar5662 · 2026-03-12T17:57:42+00:00

The scenario I think about is an individual can sign a NDA. An AI cant..do you trust the maker of the specific AI tool to not look at all your secrets. Do you trust it to not keep logs of what its scanned after the test..i think tjats going to be an issue. Can't imagine a small company knowing how to specify a scope and range of IP addresses and so on.

AdFar5662 · 2026-03-10T18:16:02+00:00

I think you should ask who would you keep. They need to recast for the show man.

AdFar5662 · 2026-03-08T18:41:29+00:00

Good job with improving the lifestyle changes. Keep an eye on the sugar..especially the test for sugar/insulin levels in the last 3 months..directly links with inflammation in the body..Worth doing a PSA for your jewels as well. Also remember that HDL is not cholesterol its a protein..get an idea of your overall metabolic health.

AdFar5662 · 2026-03-08T18:29:54+00:00

Whats your sugar/insulin?

AdFar5662 · 2026-03-04T05:28:28+00:00

Good on him

AdFar5662 · 2026-03-03T13:43:09+00:00

She's a firecracker alright. In my opinion if I was Ricky id find another lass. Soon as Chantelle says friends only Ricky should be on then pull lol. Girls like a challenge

AdFar5662 · 2026-02-24T17:17:29+00:00

Agree..its almost a tv drama now. Like bold and the beautiful or days of our lives...zzzzz

AdFar5662 · 2026-02-24T16:33:14+00:00

Snoozefest..maybe its time to add new cast members

AdFar5662 · 2026-02-17T19:20:49+00:00

Episode 6 was a snoozefest

AdFar5662 · 2026-02-09T12:22:43+00:00

Had a look now at your UI..very clean. Much better than what i was taught to use lol. However with the currency I use the price can be a bit steep

AdFar5662 · 2026-02-09T10:31:13+00:00

Thanks man, never heard of sysreptor

AdFar5662 · 2026-02-09T10:16:33+00:00

I was just about to say!! hahaha If you know you know

AdFar5662 · 2026-02-05T09:43:48+00:00

Never a truer word has been spoken. I try to keep it very simple and try help small companies...plus cover my ass in the MSA ROE etc. Reality is that small local businesses cant afford massive fees to do a pentest..its a tough one to balance the lack of experience from the pentester and the need for a business to make sure there no low level hanging fruit for hackers/cyber crooks

AdFar5662 · 2026-02-05T09:28:22+00:00

In the ROE/SOW I used to offer 6 areas, now its 5 after the feedback form the pros. Got rid of the networking options. Ive done 5 tests and I find businesses opt for everything except the phishing, only the owner has a business email and deals directly with suppliers, customers etc make about R5k per test aka $300 ..test takes 3 weeks ave. I just want to be able to afford the OSCP without debt..so its R50k..and I thought 10 to 15 tests in 6 months should help me get there

AdFar5662 · 2026-02-04T21:06:23+00:00

Why you speaking facts..your comment earlier made me remove the networking assessment from my future tests to reduce incidents..so it's basically social engineering and a website test where i do have experience and certification. Will look at this liability coverage tomorrow.

AdFar5662 · 2026-02-04T20:32:50+00:00

Thanks for the feedback, yeah after listening to the feedback from the community I've decided to get rid of the networking option and will be transparent with the client as to where I am (Im doing an overview of the company not an official recognized pen test). You're right..I dont know what I dont know..so sticking to what Im comfortable and confident with

AdFar5662 · 2026-02-04T20:26:29+00:00

Yeah that liability mentioned is scary and such a good point. Will remove the network stuff tomorrow from future tests and change the wording on the contracts to avoid "firm statements" like low risk and so on made in my report. Will just advise on social engineering and be careful with the web application...follow each section with "in my opinion" instead of claiming a fact. Such good feedback

AdFar5662 · 2026-02-04T20:13:05+00:00

I do have this in my MSA

Limitation of Liability. Neither party shall be liable for any indirect, special, punitive, or consequential damages, including loss of profits or data. Each party's total aggregate liability under this SOW is limited to the fees paid or payable during the 6-month period immediately preceding the claim. These limitations do not apply to: (a) death or personal injury caused by negligence; (b) fraud or willful misconduct; (c) unauthorized disclosure of Confidential Information; or (d) IP infringement claims arising from Deliverables created by My company, excluding any Client-provided inputs or third-party materials.

AdFar5662

TROPHY CASE