this post was submitted on 13 Nov 2023
6 points (100.0% liked)

cybersecurity

3249 readers
9 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Enjoy!

founded 1 year ago
MODERATORS
 

Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? This is the time and place to ask!

*Better late than never I say. Sorry folks!

top 7 comments
sorted by: hot top controversial new old
[–] MigratingtoLemmy@lemmy.world 1 points 1 year ago (1 children)

Still planning to sit for the AWS Security Speciality, but not sure if I will find enough time to study for it (I wanted to get it done with before the Winter break but at this rate I can't even give 2 hours a day, and I need time to explore services and note down facts).

[–] shellsharks@infosec.pub 2 points 1 year ago (1 children)

FWIW, I grinded the aCloudGuru series for Security Specialty and was able to take the exam directly off that. TBH, I didn’t even do the labs. That said, I have quite a bit of security xp (though less direct AWS xp). There is a mobile app for aCG (now owned by Pluralsight maybe?) so you could listen/watch on the go.

[–] MigratingtoLemmy@lemmy.world 1 points 1 year ago (1 children)

I'm working on the TutorialsDojo sets and I must say, they are quite good. There are no labs, unfortunately, but I probably wouldn't have the time anyway. I have very little AWS/security experience, but I have some background in networking (at least it's not completely new to me) and have the SAA so I'm not starting from scratch, but studying takes time! I wish my schedule would clear up haha.

Which certificate are you looking at right now? I'd like to do the networking speciality, SAP, and maybe the DevOps professional after that. I'm also hoping to change jobs so I get to work with AWS but no luck so far.

[–] shellsharks@infosec.pub 2 points 1 year ago (1 children)

For a time I was prepping for OSWE from OffSec but my schedule did not really allow me to commit fully to it. I haven’t really put much thought into what to do next if not for that. By Q2 next year I should have time for something new.

[–] ursakhiin@beehaw.org 0 points 1 year ago (1 children)

I'm a defender who is trying to learn more about offense. Recently I decided to install a Windows VM in virt-manager and started doing some recon on it.

What I found is the only port listening on a default install of Windows 10 pro is 7680 which is for Windows Update Download Optimization and I have no idea where to proceed from there.

Is there any good beginner resources that start from using a single Windows target and work out from there?

[–] leastprivilege@lemmy.ml 3 points 1 year ago

I would set up a Kali VM and play on HTB or tryhack me. They will have windows machines already set up for you. HTB academy's "getting started" module would be a good place to start or TCM's practical ethical hacking course (there is a free version on YouTube).