It’s been almost half a year since I last updated this blog and quite a lot has changed since my last post.
For starters, Offensive Security finally updated their OSCP course with new materials and lab machines. The exam remains the same though as far as I’m aware, and based on what I’ve seen of the changes made I’m comfortable the resources on this blog are still relevant and useful. In any case, I’m sure more specific resources will be created specifically for the 2020 OSCP if they haven’t been already so I have no plans to revisit what can be found here.
I haven’t updated this blog mainly because I’ve been too busy throughout this year so far. Work has occupied a lot of my time and energy since I started as a pen tester in November 2019 and I haven’t been able to commit the time required for these blog posts. With that said, I’ve had a couple things of note that I want to mention:
- I spent a lot of time a few weeks ago on HackTheBox, completing a range of machines and challenges. I was able to get to the pro hacker rank and was in the top 5 for New Zealand at my peak. Unfortunately I’ve since slipped back down in the rankings as new machines cycled into the active rotation, but I’m keen to get back into it soon and also document more walkthroughs for when active machines eventually retire.
- I also sat and passed the eLearnSecurity Web Application Penetration Tester exam where I was able to further improve my web app testing skill. I’ll be releasing a more in depth write up about this course soon.
Most recently, I’ve been very interested in cloud platforms and how they can be secured. Platforms such as Azure, AWS and Google Cloud have become increasingly popular over the last few years and companies are exclusively using these platforms to operate their business or provide value to their customers.
With that in mind, I’ve most recently started studying for the AZ-500 exam and hope to earn this certification sometime this year. I expect future blog posts to be more aligned with what I’ve been studying in Azure as I work my way towards this exam.
I still haven’t written the how to get a pen testing job post yet either, which I still have on my to do list. Lots to do and write about before the year is over!