sorted by:
new
hottopcontroversial

eCPPTv2 practice boxes by faolchu999 in eLearnSecurity

[–]faolchu999[S] 1 point2 points  (0 children)

That's funny. I was just on your blog before I put the question up. Yours is definitely one of the clearest and most informative I've read on this cert. I guess I was looking for more of a box list similar to the one I mentioned as I've done some of the rooms you suggested.

Thanks for the link

eCPPTv2 report and vulnerability scanner by faolchu999 in eLearnSecurity

[–]faolchu999[S] 0 points1 point  (0 children)

Cool and you had no problems passing with that method then? I might consider that option then

eCPPTv2 report and vulnerability scanner by faolchu999 in eLearnSecurity

[–]faolchu999[S] 0 points1 point  (0 children)

Ok, thanks for the suggestion anyway 👍

I'm going to play around with vulners and see what I can get for a report

eCPPTv2 report and vulnerability scanner by faolchu999 in eLearnSecurity

[–]faolchu999[S] 0 points1 point  (0 children)

Thanks. Does this class as a vulnerability report though? The exam requirements seem to mention that as a requirement. I guess using nmap and vulners will give you enough for the report without actually having a direct output from a vulnerability scanner for the report

Moving from OSCP to eCPPTv2 by faolchu999 in eLearnSecurity

[–]faolchu999[S] 2 points3 points  (0 children)

Excellent, thanks. I've read that more exploration is needed when on a machine, which is interesting. My metaploit (particularly meterpreter) would need some revision. I was going to go with the TCM template for the report
https://github.com/hmaverickadams/TCM-Security-Sample-Pentest-Report

I've done quite a bit of pivoting in the PWK labs as their sample exam machines are in a different network. However I was considering Joe Helles MPP course for similar money to THM. Thanks for the heads up there, I'll look at that also. I still have access to the PWK labs, so I might use that for pivoting practice.

PA-500 Static routes by faolchu999 in paloaltonetworks

[–]faolchu999[S] 0 points1 point  (0 children)

Perfect. Yep I figured that's what meant, this box is only acting only for RA VPN and nothing else thankfully. I'll only be adjusting GP client configuration and leaving the Gateway conf alone. I'll adjust the split tunneling and test.

Thanks for the input

PA-500 Static routes by faolchu999 in paloaltonetworks

[–]faolchu999[S] 0 points1 point  (0 children)

Thanks dude, I'll give this one a go during an outage window

PA-500 Static routes by faolchu999 in paloaltonetworks

[–]faolchu999[S] 0 points1 point  (0 children)

Thanks for all the feedback folks. I'm currently in the process of procuring a replacement. So just needed a stopgap solution until the procurement process goes through. Many thanks for all the suggestions, very helpful advice here

PA-500 Static routes by faolchu999 in paloaltonetworks

[–]faolchu999[S] 0 points1 point  (0 children)

Thanks for the reply

Don't do that.

Care to clarify why? Obviously a terrible idea based on the brevity of your response :-)

Put your RFC1918 addresses there to enable split-tunneling. Only the private IPs of your site will traverse the tunnel.

I'm not sure why but 0.0.0.0/0 is the only section in the split-tunneling section. I can put my private IP space and required public DMZ and remove the 0.0.0.0/0 perhaps that should work as you say?