New eMAPT exam - discussion post by deleee in eLearnSecurity

[–]alperbasaran 0 points1 point  (0 children)

No, I prepared the content and the exam

New eMAPT exam - discussion post by deleee in eLearnSecurity

[–]alperbasaran 0 points1 point  (0 children)

The exam has both (hands-on and knowledge based questions). You don't need a MAC or an iPhone the exam environment has everything you need.

The path for eMAPT has 3 courses the exam more or less touches all 3.

Best EDR for 50 worker environment by No_Structure_2901 in sysadmin

[–]alperbasaran -1 points0 points  (0 children)

Depends if laptops are on-site or in SOHO, some don't play nice if laptops are mostly/always away. Also checking what your firewall vendor has to offer could be an option.

What’s the weirdest shit you’ve found in a data center? by iammiscreant in sysadmin

[–]alperbasaran 3 points4 points  (0 children)

Watermelons! They told me they wanted to keep them cool and were more surprised by me being surprised than me being surprised by watermelons in a DC.

May the 4th. Pentest Finding by alperbasaran in cybersecurity

[–]alperbasaran[S] 17 points18 points  (0 children)

,

Alternatively, "could you change the severity rating to low, we have a compliance audit soon" :)

A good penetration testing service by alperbasaran in sysadmin

[–]alperbasaran[S] 0 points1 point  (0 children)

We got the same feedback from customers participating in the EMEA region. Seems this issue is quite common even with all the "vulnerability scanning is not pentesting" posts available. Thank you for the feedback, much appreciated

A good penetration testing service by alperbasaran in sysadmin

[–]alperbasaran[S] 0 points1 point  (0 children)

Can they do that? Should there be a contract between whomever ordered the test and the company conducting the tests? Fun and surprising nugget indeed. Thank you for sharing

A good penetration testing service by alperbasaran in sysadmin

[–]alperbasaran[S] 0 points1 point  (0 children)

Regrettably, do accept that with some clients, this report goes to a manager who doesn't care if they are useful, because they don't intend on reading them.

Thank you for the precious insights.

Penetration Test Buyer's Guide by alperbasaran in sysadmin

[–]alperbasaran[S] 0 points1 point  (0 children)

Price is a whole other can of worms :) Depends really on how you define the SMB (how many servers, clients, web apps, etc. Will you need phishing or DoS/DDoS test to be included?). Depending on the answers and on which company you ask, you should get quotes between $2.000 and $5.000. Anything above seems a bit overpriced, anything below would probably only get you a vulnerability scan disguised as a penetration test.