嗯,用户让我帮忙总结一篇文章,控制在一百字以内,而且不需要特定的开头。首先,我需要仔细阅读文章内容,理解作者的意图和主要观点。 这篇文章是关于一位系统工程师想转行进入安全领域,特别是渗透测试。他目前的工作涉及网络和服务器管理,朋友建议他专注于自己有背景的领域,比如网络或云。然而,他在网上看到很多建议说应该先从Web应用入手。他不确定未来是否要专注于渗透测试,但想先进入安全领域,再决定发展方向。 接下来,我需要将这些信息浓缩到100字以内。重点包括:系统工程师身份、考虑转向安全、朋友建议专注现有领域、网上的建议转向Web应用、以及他的不确定性和计划。 确保语言简洁明了,直接描述内容,不使用总结性的开头。这样用户的需求就能得到满足了。 </think> 一位系统工程师在考虑如何从网络和服务器管理转向安全领域时寻求建议。朋友建议专注于现有背景(网络或云),但网上普遍推荐从Web应用入手。作者对是否专注于渗透测试犹豫不决,计划先进入安全领域再决定发展方向。 2026-2-26 05:58:11 Author: www.reddit.com(查看原文) 阅读量:9 收藏
Hi all, I am sure this question goes around a lot (I’ve seen it myself a couple times) but I was curious what people in the field have to say about this topic.
Currently I’m a Systems Engineer, we deal with network / Server administration (Firewalls, Wifi configuration, Cloud infrastructure, AD, File Servers, some web servers, etc.). I have a friend who’s a security engineer at Apple who thinks it makes the most sense to transition into whatever you have the most background in, which for me would obviously be either network or cloud.
Having read through this reddit as well as other Pentesting adjacent places, almost everyone says to go for web apps first. I am not sure whether I want to do full on pentesting in the future, my main goal is to transition into security. I absolutely love the act of pen testing, I think the one thing that makes me hesitant to want to do it is how hard it is to initially get into. My plan at this moment is to transition into some type of security role, and then determine whether I want to go for pentesting or another more senior security role after.
But my main purpose of this post was to get people’s opinions on whether I should focus on web apps first or net pentesting to start out with. I’ve read that its best to specialize in one area first and try to stand out from the rest of the crowd for the best chance at transitioning into the security field. Any opinions or suggestions are appreciated. Thanks for reading. !
如有侵权请联系:admin#unsafe.sh