![]() ![]() The exam applications are randomly selected when you start, so you won’t get the same applications on subsequent attempts. With that in mind, I had to give it another try! The price increased to $99, but the offer for a full refund if you passed before December 15th was still valid. Even with more than one hour left to figure it out, it ultimately ended with a failed attempt. When I only had one step left, I got stuck. But then I tried something completely different, and that worked. I spent way to much time on something that should have worked, and would have worked in the Web Security Academy. When I got the entire first application and the first step on the second application done, with more than half the time left, it certainly felt like I should be able to finish this. Exfiltrate contents of /home/carlos/secret.PortSwigger expects you to do the following (in order) on both applications: ![]() You get a total of four hours to do this. The exam itself was similar to the practice exam, except that you have to complete two applications. And as far as I know, there’s nothing stopping you from using a VM with Linux to do the exam itself. After verifying your identity, you disconnect from the proctoring session. The Examity platform does not work on Linux, so you need Windows or Mac for this stage. PortSwigger use Examity, a third party proctoring service, to verify your identity. Before I felt ready for the exam, I decided to do as much as I could of the Web Security Academy Labs, focusing mostly on XSS (since the exam preparation specifically mentions XSS). It took a couple tries, but I eventually got it. I purchased the exam, and started working on the practice exam. Given that I work a lot with Burp Suite (and already had the required Burp Suite Professional license), it made perfect sense to just give this a go! PortSwigger had a nice offer for Black Friday, $9 for the exam attempt - and a full refund if you passed before December 15th. I’ve recently transitioned from development to penetration testing. I’ve been a hobby coder since I was 10, and a professional developer for a long time. I spent about half of 2020 working on various certifications, like OSCP and OSWE and several from eLearnSecurity. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |