pentesting

Is there any pentesters here?
If yes could someone answer my questions?
Im trying to learn it but i have some questions that i cant find in google.

main question: How do you attack the target?
Do you have to get their wifi or something?
Like in CTF you use vpn to connect to network.
but how do you do it in real life?

already tried youtube, but not reddit thanks for suggestion

What's your question. Currently working in a offensive cyber sec role

my main question how do you even start?
like with ctfs you use vpn to connect to network
but how do you in irl?
i know its stupid question but i cannot find the answer

Luxkas69420' Alıntı:

already tried youtube, but not reddit thanks for suggestion

Genişletmek için tıklayın ...

what is your main question? can u tell

thomasjb' Alıntı:

what is your main question? can u tell

Genişletmek için tıklayın ...

my main question how do you even start?
like with ctfs you use vpn to connect to network
but how do you in irl?
i know its stupid question but i cannot find the answer

YouTube is your best friends

Nicholas Lim' Alıntı:

What's your question. Currently working in a offensive cyber sec role

Genişletmek için tıklayın ...

my main question is

Luxkas69420' Alıntı:

my main question how do you even start?
like with ctfs you use vpn to connect to network
but how do you in irl?
i know its stupid question but i cannot find the answer

Genişletmek için tıklayın ...

Luxkas69420' Alıntı:

Is there any pentesters here?
If yes could someone answer my questions?
Im trying to learn it but i have some questions that i cant find in google.

Genişletmek için tıklayın ...

whats the question bro

Luxkas69420' Alıntı:

Is there any pentesters here?
If yes could someone answer my questions?
Im trying to learn it but i have some questions that i cant find in google.

Genişletmek için tıklayın ...

did you find it yet?

tahasheikh770' Alıntı:

whats the question bro

Genişletmek için tıklayın ...

check the comments

I don't know brother.

i do not know sir YouTube is your best friends

What is your question? If you have a lot of questions, add me on Discord and we will talk and answer all your questions
ODI#4044

are you still looking for it or did you find it? and also i dont understand your purpose

razer99sl' Alıntı:

are you still looking for it or did you find it? and also i dont understand your purpose

Genişletmek için tıklayın ...

i updated thread, what do you mean by purpose?

Something you can do at first is learn programing so you can understand the basics of everything, after that you can learn about the most well known methods of the market nowadays. I'm aware of these three:

• Bağlantıları görmek için lütfen Giriş Yap
  - Open Source Security Testing Methodology Manual;
• Bağlantıları görmek için lütfen Giriş Yap
  - Penetration Testing Execution Standard;
• Bağlantıları görmek için lütfen Giriş Yap
  - Open Web Application Security Project;

Knowing how things works and now that you are a bit more settled you have to try learning about vulnerabilities by practicing it. A good way to start the practical part is playing on GitHub or participating in bug bounty programs of companies like Twitch, Facebook, Google and other huge companies.
Now that you are more aware and decided that you really wanna be a Pentester there are some certifications to look for. Here is the ones I believe are the main ones to have your resumé:

• CompTIA Pentest +;
• Certified Ethical Hacker (CEH);
• Offensive Security Certified Professional (OSCP)
• GIAC Penetration Tester (GPEN);

Keep in mind that no matter how many certifications you have this is something you have to study constantly. New technologies come up and with them new stuff to study comes as well.
Never use this knowledge you'll learn to do bad things, if you want to work with security keep in mind to maintain your reputation as good as possible

Luxkas69420' Alıntı:

Is there any pentesters here?
If yes could someone answer my questions?
Im trying to learn it but i have some questions that i cant find in google.

Genişletmek için tıklayın ...

what is your main question? can u tell

CuteGirl' Alıntı:

Something you can do at first is learn programing so you can understand the basics of everything, after that you can learn about the most well known methods of the market nowadays. I'm aware of these three:

• Bağlantıları görmek için lütfen Giriş Yap
  - Open Source Security Testing Methodology Manual;
• Bağlantıları görmek için lütfen Giriş Yap
  - Penetration Testing Execution Standard;
• Bağlantıları görmek için lütfen Giriş Yap
  - Open Web Application Security Project;

Knowing how things works and now that you are a bit more settled you have to try learning about vulnerabilities by practicing it. A good way to start the practical part is playing

Bağlantıları görmek için lütfen Giriş Yap

on GitHub or participating in bug bounty programs of companies like Twitch, Facebook, Google and other huge companies.
Now that you are more aware and decided that you really wanna be a Pentester there are some certifications to look for. Here is the ones I believe are the main ones to have your resumé:

• CompTIA Pentest +;
• Certified Ethical Hacker (CEH);
• Offensive Security Certified Professional (OSCP)
• GIAC Penetration Tester (GPEN);

Keep in mind that no matter how many certifications you have this is something you have to study constantly. New technologies come up and with them new stuff to study comes as well.
Never use this knowledge you'll learn to do bad things, if you want to work with security keep in mind to maintain your reputation as good as possible

Genişletmek için tıklayın ...

that literally answered nothing. I already know the basics

why do you all have bad english and cant form a sentence tho

Luxkas69420' Alıntı:

that literally answered nothing. I already know the basics

Genişletmek için tıklayın ...

Good, if you already know the basics how about you use your basic knowledge to work?
Judging by your answer you expecting someone to give you a step-by-step guide. And honestly if you really know the basics you know that there are no step-by-step guide to things like this.
There is no YouTube tutorials for that, there is only knowing what you wanna do and using the basics to try to that and learn more things as you get the results from what you have tried.

For example, a friend of mine called Gabriel found out a security breach on Facebook streams studying how the process of raiding streams works, how did he learned about it? Studying each and every variable that the event uses when that happened and so he found out he could redirect viewers from a stream to another without being admin in any of the pages.

As for how do you attack the target, there are many ways to attack someone. Just don't expect people to share these kind of information to the public like it is nothing.
CTFs are the basic, but if you want something easier than that what about or ? These site have challenges for you to learn the basics of hacking with challenges to give you an idea on how to start. To test what you learned in the sites I recommended try to use the that is a web application with lots of vulnerabilities on purpose for you to test your skills