Hackers: How can I get started with Ethical hacking ?

Once i was also confused with the same question so i think i can give better answer of it.

First thing is you have to be clear about in which area you want to learn to hack or better i use word security research.

There is mainly two area

Information securityNetwork Security

Often when Newbee people get confused between these two fields and often go for wrong profile.

If you are interested in online application,website security you have to go for 1st one.

If you are more interested in router,hub,switching,LAN etc you have to go for 2nd one.

I am Security researcher of first type that is information security researcher

So if you are also interested in information security profile then follow these things.

In this field it is not necessary to be excellent coder .

Basic coding is fine but if you are very good at it it is always plus point.

For coding Python is best to learn it is very easy to code and mostly everything is done by functions.

If you are not good in coding area than also it is fine.

Other thing is vulnerability (main focus).

For best practices please refer.

bWAPP

DVWA

SQLI

 LabsWeb 

GoatMutillidea

Commix

these are some best learning environment

If you clear these all then it is 90 percent chances of clearing any intervies of information security researcher profile as FRESHER.

even if you have done many and not all things mension in all environment you are more knowledgeable even many CEH'rs

Many people thinks that CEH have very important role in being hacker. It is very wrong thinking.

CEH is just start of a area and not necessary for being great hacker.

It is valuable when you are fresher because by this course interviewer knows that you have basic knowledge of area bevause ofen people say thay they know hacking and all..where they just know about some very basic predefined tools and application.

Where a CEH person knows what are real challenge in field.

But if you have practiced in above mentioned environment than you have more idea even than a CEH Person

If anyone is currently thinking that it is not true about what i said of CEH please dont give stress to your self because i myself have not done CEH and i am working with CEH'rs and we are same in level of knowledge.

But if you think you cant get an interview without CEH then it is your choice.

As being newbee dont go directly for bug bounty programs.

Follow OWASP guidelines for more.

And Only use KALI Linux as OS.

If you are not comfortable with command lines then anyhow get used to it.

Everything is based on commands in this field.

If you have followed all these steps then you are perfectly set for a security researcher and penetration tester.

Another important thing is your getting into field.

As this is very sensitive field and you are a fresher no one will give you a great start

Find a great company that is very great for learning even if not only it pays you less but even if it dont pay at all.

This field is totally depend on experience and knowledge.

Once you have 1–2 years of REAL experience you will almost know every part of this field and no one will stip you for a great Pay.

Dont focus on payment in starting.

If you are interested in information security field and want to grow your career in same then you are on one of the best career road.

Happy journey.

Related Posts

Share this post

Subscribe Our Newsletter