Some of you may recognize me from the Twitch chat. I haven't been there in a while, but I'll be back, been busy with life and working on this dang cert, so I figured I would share the knowledge and let people know a little about my experience with it. You can check out the cert and associated training here. You can also check out a sample of the course. I am not affiliated with eLearnSecurity in any way. No one is paying me to do this review, and all of my opinions are just that, my opinions. Ya know, standard internet non-sellout disclaimer.
The TL:DR of this is that this cert, and the associated training material, is absolutely great for anyone without a background in Ethical Hacking. It provides a comprehensive training program complete with VM labs and videos, which works great for the student looking to get their hands dirty without spending a ton of time hunting down specific YouTube videos on topics. I would recommend the "Full" version over the "Elite", see below for reasons why.
The course structure, which you can view on eLearnSecurity's site, consists of death by PowerPoint, an informative video with the presenter walking through how to use the tool/concept described in the PowerPoint, and then each topic is given a Virtual Lab, which you can VPN into and use to practice your skills. Overall, it works pretty well, and I found the structure to be quite good at pounding the concepts into my brain for use in the labs later on.
The course walks you through a basic intro to Networking and Information Security, then dabbles with entry level programming (C++ and Python). The programming part is not useless, but I would recommend CodeAcademy and Learn Python the Hard Way for those looking to start down those roads. You end with a walkthrough of the basic methodologies of Penetration Testing:
- Information Gathering
- Footprinting and Scanning
- Vulnerability Assessment
- Web Attacks
I ended up picking up the Elite version of the course, which is more expensive, but gives you access to the training materials via HTML5 for mobile use and the ability to download all the training material in PDF format. It also includes more VM lab time and a non expiring voucher to take the exam whenever I wanted, with 3 free retakes. Please note, if you spring for the "Full" plan, you'll have to take the exam 180 days from the date you buy the course. The mobile Downloads were nice for studying on the go, but I barely used 8 hours of total lab time, and passed the exam on my first time, so I would recommend the "Full" version if you're thinking of picking this up, unless you need the ability to train offline.
If anyone has any questions, feel free to shoot them my way or comment, I'll answer to the best of my ability. Also, if you're interested in this and you've gotten this far, check out Cybrary! They are an absolutely phenomenal free site for learning anything and everything about Cybersecurity.