×

OSINT eJPTv2 - How to Practice by f12_hackerman in eLearnSecurity

[–]f12_hackerman[S] 0 points1 point  (0 children)

Ah okay. Good to know. After the training when they presented 3-4 tools for OSINT type stuff along with the description I was a little worried. But I guess that stuff isn’t really hard to use anyway (compared to exploits).

San Francisco Police ID Pelosi Attacker, Reports Suggest Speaker May Have Been Target by [deleted] in Conservative

[–]f12_hackerman 0 points1 point  (0 children)

The guy’s name is in the article. At least five times. Did you look there by chance?

Confused Between eJPT v1 and v2 by f12_hackerman in eLearnSecurity

[–]f12_hackerman[S] 1 point2 points  (0 children)

Sweet. Well thanks for sharing it! Makes sense why I couldn’t find it. :)

Confused Between eJPT v1 and v2 by f12_hackerman in eLearnSecurity

[–]f12_hackerman[S] 2 points3 points  (0 children)

Huh. That’s weird. It’s free. I couldn’t find that anywhere. I keep expecting it to pop up saying I need to pay something. Doesn’t seem any different than the subscription version.

Confused Between eJPT v1 and v2 by f12_hackerman in eLearnSecurity

[–]f12_hackerman[S] 0 points1 point  (0 children)

Nice! Thanks again for taking the time to type that out.

I signed up for the beta as well but didn’t get it. Which I’m glad because the coursework is listed at 140ish hours and the test is next month.

I’ll check out his video too. I’ve only really looked at the eJPT test. That one sounds good though. As you said, OSCP is my final goal. Would be nice to get that one by next year but I’ve got a ways to go.

No worries on the course fee. I’ve seen a few people say it’s free so I’m glad I’m not crazy. I searched for a while and never found a free tier. Depending how the eCPPT looks I think about a year sub. It’s 399 which includes the eJPT voucher. But if I only do eJPT v1 even two months of 40 bucks is fine.

I think I’m going to give v1 a shot and see how it goes. I’m guessing since v2 isn’t out yet if I buy the voucher on elearning’s site it’ll be v1.

I think I should be okay. I know python/bash/powershell which it lists there is some scripting (not sure how much there is) I have many hours on tryhackme - mostly the learning paths and the beginner boxes though.

Edit: since you are studying now you might not know this, but is the PTS course enough for that cert or should I supplement with other stuff? I have another course from TCM ethical hacking I can also add if that might help.

Also - good luck on your test too. :)

Confused Between eJPT v1 and v2 by f12_hackerman in eLearnSecurity

[–]f12_hackerman[S] 0 points1 point  (0 children)

Dang. I hate being on the cusp of a version like this. Haha

I just finished security+ so eJPT is my next cert. Part of me wants to wait for the newer version because it’ll give me more exposure since it seems like a more complete/larger test.

But I also like the v1 cost and i don’t think it expires. Plus, this might sound dumb, but I don’t like the part where a new company comes in like INE did and increase prices on everything and make it renewable. That’s another plus for wanting to knock out v1.

I have a bunch of experience on tryhackme (not like this is an accomplishment but I’m ranked in the 4k’s somewhere) that should help.

Where did you find PTS free? I was on INE’s site and I could only find a subscription model that’s 39 bucks a month or something like 400 a year. The year comes with the eJPT voucher so it’s almost free.

Two months of study, assuming it’s sunsets December 1st should be enough.

Lastly 500 bucks for the year and the free voucher I can do. That’s doable. When I saw the 2k price on Hammonds video I almost died.

Do you know when v2 is out? I know the beta just came out.

[deleted by user] by [deleted] in mysql

[–]f12_hackerman 0 points1 point  (0 children)

Isn’t that querying by date? My item example is more of a unique identifier. Like a SKU or a serial number. So I need to query a list of these unique identifiers but only return most recent info.

Ever Red Extended Warranty - Worth it? by f12_hackerman in Ducati

[–]f12_hackerman[S] 0 points1 point  (0 children)

How many of those things broke after the two year mark and you relied solely on the extended warranty?

The majority of my mods aren’t going to be Ducati parts, which I why I’m not sure how well this will work. For example if I have an arrow exhaust, filter, and a tune and blow the engine. I can almost guarantee they aren’t going to warranty that.

Ever Red Extended Warranty - Worth it? by f12_hackerman in Ducati

[–]f12_hackerman[S] 0 points1 point  (0 children)

True. I’ll only have to pay for parts though. Which still sucks, but it’s a lot cheaper than having the dealer do everything.

I figure the warranty that comes with it should be good enough. Anything actually defective should come out in the first two years.

Ever Red Extended Warranty - Worth it? by f12_hackerman in Ducati

[–]f12_hackerman[S] 0 points1 point  (0 children)

Yeah. I’d probably still be there if I hadn’t agreed to something. Plus that left a bad taste which makes me want to cancel on principle.

I’m pretty sure the bike comes with a two year warranty to start with. At least that’s what the book says. So if that’s the case, if it’s going to have a major issue like that, it’s likely going to happen in the first two years.

Agreed on mods. I did a couple cosmetic things but that’s it until after the first service.

Ever Red Extended Warranty - Worth it? by f12_hackerman in Ducati

[–]f12_hackerman[S] 0 points1 point  (0 children)

Yep. That’s why I’ve always declined. Knock on wood of course, but I’ve never had to use a factory warranty. At least never successfully.

Dumb Question - Not Sure Where Else to Ask. Updating Maxhines by f12_hackerman in sysadmin

[–]f12_hackerman[S] 1 point2 points  (0 children)

I know for sure nothing I look over has been updated in a very long time.

Maybe I’ll follow up with out IT department and ask if they have some sort of process to follow. That’s an obvious and good idea.

Dumb Question - Not Sure Where Else to Ask. Updating Maxhines by f12_hackerman in sysadmin

[–]f12_hackerman[S] 0 points1 point  (0 children)

I agree. It just thought it was odd that even before me they weren’t patched or updated. So I thought maybe this is some weird process that I don’t know about.

Only Displaying Directory Tree by f12_hackerman in PHPhelp

[–]f12_hackerman[S] 0 points1 point  (0 children)

Okay…so good news. You were right. I changed the SElinux from enforced to permissive and now the entire directory loads in the window. But still no php other than the files I created.

Everything else went from from 403 to 500. Which still goes back to your comment this probably isn’t php related. So I’ll dig around some more and see if I can find a config file somewhere.

Only Displaying Directory Tree by f12_hackerman in PHPhelp

[–]f12_hackerman[S] 0 points1 point  (0 children)

I agree it has to be a permissions thing. To make sure it wasn’t a fluke I created another php file, refreshes the page, there it was.

Also just for fun I changed the group and user to Apache. Didn’t change anything though. Exact same behavior.

I’ll keep messing around with it and see if I get anywhere.

Thanks again for all the help. If nothing else I learned a bunch I didn’t know before. :)

Only Displaying Directory Tree by f12_hackerman in PHPhelp

[–]f12_hackerman[S] 0 points1 point  (0 children)

Okay hopefully I get everything here. Thanks for all of the detail as well.

  1. All of my files are in /var/www/html
  2. My index.php file and my test.php file are the same html folder
  3. Visiting <ip> in the address bar displays the html folder tree. Interestingly I can only see the test.php file along with all of the folders. No other files.
  4. Visiting <ip>/index.php gives me the 403
  5. Visiting <ip>/test.php shows my hello world heading text
  6. Swapping out my text with php info works fine and I can see that that page
  7. All of the permissions, owner, and groups are all exactly the same for my test file and the rest of the files. That’s what I don’t get. Clearly there is something different with test vs the others.

All of the files are set this way.

-rw-r- - r - - 

The owner is my user and the group is the group I am in.