The penetration Testing domain has grown exponentially in the last couple of years and so the competition. Validating and Proving your skills in a short interview call isn’t always a win-win situation for both the employee and employer and this is where various security certification comes into the picture. Various well-known security certifications give the organization confidence about the person they are hiring as they have validated their skills through the certification exam.
eLearnSecurity offers a certification called eLearnSecurity Certified Profession Penetration Tester (eCPPT) v2 which is a real-life practical scenario-based examination. I recently gave this certification and obtained it. After posting about the certification, lots of people pinged me over Twitter and LinkedIn to know my view and feedback on this certification.
In this article, I will be giving a detailed overview of the exam and some tips to rock it on the first attempt.
Please note that I didn’t opt for the coursework as I already have experience with the pre-requisites asked in the exam.
Exam Cost: $400 (Inclusive of Tax)
Voucher Validity: 6 Months from Purchase
Pre-Scheduling: Not Required. Start when you are ready
Exam Duration: 7 Days for Exam + 7 Days for Reporting. (If you submit during this deadline and do not pass, you will get another attempt to give after 7 days).
Support line during Exam: Available & Really Fast.
Day — 1: Tower Conquered
I started my exam in the morning around 11AM and started enumerating stuff. From the entry point, I took detailed screenshots and started to make rough steps to reproduce each identified issue. I used Joplin to manage the Exam steps and Saved screenshots target_ip wise in a structured way.
I was able to gain root shell in the first machine by multiple ways in first couple of hours and moved further in the scope. If your basics with pivoting are clear, achieving root with the next machines is super easy. By 4 PM, I had 3 root shells and the next target was Buffer Overflow.
I took a small break and started back at 6 PM to hack the Buffer which was my personal fear. To my surprise, I was able to replicate Buffer Overflow locally by 7 PM but when it came to exploiting remote target, I had to struggle a bit.
By 10 PM, I was able to find a way to achieve Buffer Overflow in the remote target and now I was just 1 root away from completing the exam. I had rooted 4 boxes and had a long time-frame left so I paused my exam environment to chill for a while.
Day — 2: Root, Root, Everywhere!
I started back on the next day and started to enumerate and after 2 hours of hassle, I was able to gain root access into the final box as well. Technically, in 24-Hours, I had root privileges on all 5 targets and I had rough steps and proper screenshots. I quickly verified If I am missing anything for the report and took note of all the missing items.
I started to write a report and finished my report by the next day and reviewed it on another day. I still had 3 days before the exam times up. (and 7 days more for reporting 😛.)
I finally submitted my report on the 7th day when my exam timed up and after two days, I received a pretty looking email saying “You are now an eCPPTv2!”
I really liked the way the exam is structured and gives a flavor of real-world penetration testing scenarios. However, I feel the time provided for this exam can be reduced to make it more competitive. I really enjoyed my exam and learned a lot of things along the way by solving some situations from an unconventional way to finally getting my first Practical Exam certification, this was a great ride. I will highly recommend this certification to anyone who would like to challenge their Penetration Testing Skills.
I am looking forward to jumping into the eLearnSecurity Web Application Penetration Tester Extreme (eWAPTX) v2 examination and I hope it will be an interesting one like this. Once again, I would like to thank the eLearnSecurity team for constructing and putting together this exam.