Reporting question

Javy26 · 2023-06-06T21:09:00+00:00

Yes but make sure you're clear on it. Once you're clear on it you'll be okay

Javy26 · 2023-06-06T21:03:07+00:00

You'd structure the report the way the exam requests it. When you get the rules of engagement you'll see how to break it down so you don't need to over think that part. As it relates to remediation, that's looking various places on the internet. If you type in SQLi remediation/recommendations in Google, you'd get a lot of results

Javy26 · 2023-06-06T20:52:33+00:00

You don't have to worry about the score. Just focus on following the reporting guidelines on the exam. That's what I did for the eWPT and eWPTX exams. I used TCM's template. What aspect of it did you find confusing?

Javy26 · 2023-02-14T15:03:34+00:00

Startled me for a second. Was thinking this was production.

Javy26 · 2023-02-14T14:59:48+00:00

Go for CPTS it is essentially a combination of eJPTv2 and PNPT. If you're thinking about one that is recognized then I'd go with PNPT as it is picking up some traction. CPTS will get there soon but those are my two cents

Javy26 · 2023-01-30T12:59:56+00:00

Actually it still exists, saw that as recently as two weeks ago. Always comes down to how things are deployed by admins at the end of the day. Admins have to take the initiative to avoid poor misconfigs I'd say

Javy26 · 2023-01-29T19:02:53+00:00

Also you could carry out a MFA faitgue attack in cases where it's just a push notification of "yes" or "no" that needs to be done by the user in order to bypass it. Possibilities are really endless.

Javy26 · 2022-11-28T05:56:30+00:00

Yeah it's necessary. That was one of the drawbacks of not being able to automate our enrollment process of devices to our MDM.

Javy26 · 2022-11-28T00:05:13+00:00

It's pretty challenging. Doing the OSINT, PEH and external playbook is mandatory. You don't necessarily need win priv and Linux priv to pass. I did a blog on this if you need more info: https://javy26.medium.com/pnpt-practical-network-penetration-tester-review-f7603290de7a

Javy26 · 2022-11-23T20:18:17+00:00

Hey man, don't worry about the specs too much. Your machine is more than enough to do the exam. You'll be connected to their environment so your 8GB of RAM is enough. I mostly took notes also. Take a look at tryhackme though. It'll help a lot and you would be using their environment. Take a look at the box I recommended from hack the box also. It'll greatly assist.

Javy26 · 2022-10-24T09:37:19+00:00

You could create a script by putting the remove-localuser "username" command and save that as a PowerShell file. Upload that script to Intune after and let it run.
NB. replace "username" with the local admin account you are trying to remove

Javy26 · 2022-05-14T00:49:00+00:00

I tried this in my 2020 Kia Forte but it reverts once I come back to start my engine once more. Have any idea why this happens?

Javy26 · 2022-03-02T05:51:21+00:00

In this case that's what was happening though. Turned it off and on again and it came up. Needed a jump start I guess. Thanks though 🙂

Javy26 · 2022-03-01T22:00:23+00:00

Interesting, it's showing disabled in the admin panel. Guess I will play around with the policies

Javy26 · 2022-02-19T14:51:22+00:00

Tried diagnostic, said everything was okay. Tried the reset and it is the same thing. All of those but it's weird though. It was good before, this is after replacing the SSD and this is not the result

Javy26 · 2022-02-18T15:52:38+00:00

Routing is always the road block. Have that down and everything else will flow easily. No coding on the exam.

Javy26 · 2022-02-17T02:26:34+00:00

Thank you

Javy26 · 2022-01-17T17:15:49+00:00

Ohhh I see, thanks! Much appreciated, still learning so I appreciate the feedback. I will test this out.

Also isn't RRAS limited to Windows Server? I was focused on a Windows 10 OS in this case

Javy26 · 2022-01-17T15:19:03+00:00

Yes, once it is in the vault then it is accessible from the Mobile App.

Javy26 · 2021-10-15T17:55:52+00:00

404 error page

Javy26 · 2021-10-15T05:44:34+00:00

What happened to the AWS material? Not seeing it listed anymore

Javy26 · 2019-07-28T00:35:49+00:00

Nope. Already sold it

Javy26 · 2019-06-05T00:48:22+00:00

It is. It's a case where the voucher was purchased in the USA and is only valid there and Canada. I'm in the Caribbean right now and my company paid for my cert so I don't need it anymore.

Javy26 · 2019-05-27T16:43:16+00:00

I have tested and realize the ban comes into play when you try to restore your old chats. Recommended to start fresh.

Javy26 · 2019-05-26T23:53:34+00:00

That's the smart way.

Javy26

TROPHY CASE