π£ I Failed! But Iβm not giving up! π
I set myself a challenge to pass the Burp Suite Certified Practitioner Exam in 30 days. Yesterday marked the end of my challenge and, despite my best efforts, I fell short of my goal. I managed to solve 3 out of 5 mystery lab challenges on PortSwigger and ran out of time on the practice exam.
So, whatβs next?
Iβve decided to extend my challenge for several reasons:
π The probability of passing the certification is low (based on my practice test and mystery lab results) π
π I canβt afford to buy another exam voucher, so I donβt want to waste it πΈ
π I still need to cover the remaining vulnerabilities (Race Conditions, DOM-based vulnerabilities, Insecure deserialization, HTTP request smuggling, and NoSQL injection) π΅οΈββοΈ
π I want to complete all the practitioner labs without looking at the solutions π§
π I aim to finish the practice exam in less than 2 hours (practice makes perfect!) β±οΈ
Lesson Learned:
This challenge has been a great learning experience. Iβve gained a lot of knowledge about web app vulnerabilities and feel ready to start bug bounty hunting and participate in CTF challenges. Iβve learned that sometimes, we need more time to achieve our goals, and thatβs okay.
Ideal Preparation Time:
Based on my experience, Iβd say the ideal preparation time for the Burp Suite Certified Practitioner exam is between 2 to 3 months. This might vary if you have extensive experience in bug bounty hunting and web application hacking.
When I will take the exam:
As for me, I plan to take the exam in January 2024. This gives me about 40 days to review, study, and practice enough to pass the certification.
So, my advice to you is that the ideal time to prepare and pass the BSCP is 2 to 3 months. Remember, practice more than you read or study because, without enough practice, you wonβt learn.
This challenge isnβt over for me, and Iβll continue to share my progress. Thank you all for your support and encouragement. Itβs given me so much motivation and energy.
Happy weekend to you all! Feel free to connect with me and share your advice in the comments. ππ
π Day 3οΈβ£0οΈβ£ of my Burp Suite Certified Practitioner challenge is here! π
Today, Iβll be reviewing all the materials that Iβve studied so far and revisiting my notes. π During this challenge, Iβve covered 20 popular vulnerabilities on PortSwigger and also completed the Web Fundamentals Path on TryHackMe. π»π
Tomorrow, Iβll be attempting at least 5 Mystery lab challenges on PortSwigger and will also take the Practice Exam. π§ͺπ Based on these results, Iβll decide whether to take the certification exam or extend the challenge. π€
Iβm hopeful for some good results on the mystery lab and practice exam. π Your support and positive vibes have been a great source of motivation throughout this journey. π¬π
Letβs continue to learn together. ππ
Network Security Question: A set of routines, standards, protocols, and tools for building software applications to access a web-based software application or web tool. Choose the right answer π
π Day 2οΈβ£9οΈβ£ of my 30-Day Challenge to Become a Burp Suite Certified Practitioner is complete! π
Today, I continued with the Prototype Pollution on PortSwigger. π― I learned about:
β What is Prototype Pollution?
β How do vulnerabilities arise?
β What are some sources of prototype pollution?
β Types of prototype pollution (Client-side, server-side)
I also completed the Labs on PortSwigger. π§ͺ
Thatβs all for today!π
Thank you all for your supportive comments! π¬
Letβs continue to connect and learn together. ππ€
π Day 2οΈβ£8οΈβ£ of my 30-Day Challenge to Become a Burp Suite Certified Practitioner is complete! π
Today, I continued with the JWT Attacks on PortSwigger. π― I learned about:
π What are JSON web tokens (JWTs)? β
π What are JWT attacks? π£
π How to work with JWTs in Burp Suite? βοΈ
π How to exploit JWT vulnerabilities? π₯
I also completed the Labs on PortSwigger. π§ͺ
Thatβs all for today!π
Thank you all for your supportive comments! π¬
Letβs continue to connect and learn together. ππ€
π Day 2οΈβ£7οΈβ£ of my 30-Day Challenge to Become a Burp Suite Certified Practitioner is complete! π
Today, I continued with the Web Cache Poisoning on PortSwigger. π― I learned about:
π What is Web Cache Poisoning? πΈοΈ
π How does Web Cache work? βοΈ
π How to construct an attack? π£
π How to exploit cache design flaws? π₯
π How to exploit cache implementation flaws? π₯
I also completed the Labs on PortSwigger. π§ͺ
Thatβs all for today!π
Thank you all for your supportive comments! π¬
Letβs continue to connect and learn together. ππ€
Maisam Noyan
π€What SSH stands for?
β‘οΈDaily Cybersecurity Acronyms - Follow βͺ@noyan401β¬
#cybersecurity #infosec #acronym #ssh #daily#network #security
1 year ago | [YT] | 2
View 0 replies
Maisam Noyan
π€What Sysmon stands for?
β‘οΈDaily Cybersecurity Acronyms - Follow βͺ@noyan401β¬
#cybersecurity #infosec #acronym #network #security #windows
1 year ago (edited) | [YT] | 2
View 0 replies
Maisam Noyan
π€What IAAA stands for?
β‘οΈDaily Cybersecurity Acronyms - Follow βͺ@noyan401β¬
#cybersecurity #infosec #acronym #network #security
1 year ago | [YT] | 5
View 0 replies
Maisam Noyan
If π«΅ YOU π«΅ are looking for a FREE Hands-on Ethical Hacking Course - This is for you ππ
https://www.youtube.com/watch?v=RUkHe...
#ethicalhacking #ethicalhackingfullcourse #free #freecourse #freeonlinecourse #cybersecurity #infosec #penetrationtesting #onlinecourse
1 year ago | [YT] | 11
View 2 replies
Maisam Noyan
π£ I Failed! But Iβm not giving up! π
I set myself a challenge to pass the Burp Suite Certified Practitioner Exam in 30 days. Yesterday marked the end of my challenge and, despite my best efforts, I fell short of my goal. I managed to solve 3 out of 5 mystery lab challenges on PortSwigger and ran out of time on the practice exam.
So, whatβs next?
Iβve decided to extend my challenge for several reasons:
π The probability of passing the certification is low (based on my practice test and mystery lab results) π
π I canβt afford to buy another exam voucher, so I donβt want to waste it πΈ
π I still need to cover the remaining vulnerabilities (Race Conditions, DOM-based vulnerabilities, Insecure deserialization, HTTP request smuggling, and NoSQL injection) π΅οΈββοΈ
π I want to complete all the practitioner labs without looking at the solutions π§
π I aim to finish the practice exam in less than 2 hours (practice makes perfect!) β±οΈ
Lesson Learned:
This challenge has been a great learning experience. Iβve gained a lot of knowledge about web app vulnerabilities and feel ready to start bug bounty hunting and participate in CTF challenges. Iβve learned that sometimes, we need more time to achieve our goals, and thatβs okay.
Ideal Preparation Time:
Based on my experience, Iβd say the ideal preparation time for the Burp Suite Certified Practitioner exam is between 2 to 3 months. This might vary if you have extensive experience in bug bounty hunting and web application hacking.
When I will take the exam:
As for me, I plan to take the exam in January 2024. This gives me about 40 days to review, study, and practice enough to pass the certification.
So, my advice to you is that the ideal time to prepare and pass the BSCP is 2 to 3 months. Remember, practice more than you read or study because, without enough practice, you wonβt learn.
This challenge isnβt over for me, and Iβll continue to share my progress. Thank you all for your support and encouragement. Itβs given me so much motivation and energy.
Happy weekend to you all! Feel free to connect with me and share your advice in the comments. ππ
#BurpSuiteCertifiedPractitioner #CyberSecurity #CertificationChallenge #30DaysOfStudy #InfoSec #LearningJourney #TryHackMe #HackTheBox #PentesterLab #PortSwigger #30dayChallenge #challenge #failure #failed
1 year ago | [YT] | 10
View 0 replies
Maisam Noyan
π Day 3οΈβ£0οΈβ£ of my Burp Suite Certified Practitioner challenge is here! π
Today, Iβll be reviewing all the materials that Iβve studied so far and revisiting my notes. π During this challenge, Iβve covered 20 popular vulnerabilities on PortSwigger and also completed the Web Fundamentals Path on TryHackMe. π»π
Tomorrow, Iβll be attempting at least 5 Mystery lab challenges on PortSwigger and will also take the Practice Exam. π§ͺπ Based on these results, Iβll decide whether to take the certification exam or extend the challenge. π€
Iβm hopeful for some good results on the mystery lab and practice exam. π Your support and positive vibes have been a great source of motivation throughout this journey. π¬π
Letβs continue to learn together. ππ
#day30 #Day30 #BurpSuiteCertifiedPractitioner #CyberSecurity #CertificationChallenge #30DaysOfStudy #InfoSec #LearningJourney #TryHackMe #HackTheBox #PentesterLab #PortSwigger #30dayChallenge #challenge
1 year ago | [YT] | 6
View 2 replies
Maisam Noyan
Network Security Question: A set of routines, standards, protocols, and tools for building software applications to access a web-based software application or web tool. Choose the right answer π
1 year ago | [YT] | 5
View 0 replies
Maisam Noyan
π Day 2οΈβ£9οΈβ£ of my 30-Day Challenge to Become a Burp Suite Certified Practitioner is complete! π
Today, I continued with the Prototype Pollution on PortSwigger. π― I learned about:
β What is Prototype Pollution?
β How do vulnerabilities arise?
β What are some sources of prototype pollution?
β Types of prototype pollution (Client-side, server-side)
I also completed the Labs on PortSwigger. π§ͺ
Thatβs all for today!π
Thank you all for your supportive comments! π¬
Letβs continue to connect and learn together. ππ€
#day29 #Day29 #BurpSuiteCertifiedPractitioner #CyberSecurity #CertificationChallenge #30DaysOfStudy #InfoSec #LearningJourney #TryHackMe #HackTheBox #PentesterLab #PortSwigger #30dayChallenge #challenge #prototype #pollution #bug #vulnerability
1 year ago | [YT] | 7
View 10 replies
Maisam Noyan
π Day 2οΈβ£8οΈβ£ of my 30-Day Challenge to Become a Burp Suite Certified Practitioner is complete! π
Today, I continued with the JWT Attacks on PortSwigger. π― I learned about:
π What are JSON web tokens (JWTs)? β
π What are JWT attacks? π£
π How to work with JWTs in Burp Suite? βοΈ
π How to exploit JWT vulnerabilities? π₯
I also completed the Labs on PortSwigger. π§ͺ
Thatβs all for today!π
Thank you all for your supportive comments! π¬
Letβs continue to connect and learn together. ππ€
#day28 #Day28 #BurpSuiteCertifiedPractitioner #CyberSecurity #CertificationChallenge #30DaysOfStudy #InfoSec #LearningJourney #TryHackMe #HackTheBox #PentesterLab #PortSwigger #30dayChallenge #challenge #jwt #json #web #attack
1 year ago | [YT] | 6
View 0 replies
Maisam Noyan
π Day 2οΈβ£7οΈβ£ of my 30-Day Challenge to Become a Burp Suite Certified Practitioner is complete! π
Today, I continued with the Web Cache Poisoning on PortSwigger. π― I learned about:
π What is Web Cache Poisoning? πΈοΈ
π How does Web Cache work? βοΈ
π How to construct an attack? π£
π How to exploit cache design flaws? π₯
π How to exploit cache implementation flaws? π₯
I also completed the Labs on PortSwigger. π§ͺ
Thatβs all for today!π
Thank you all for your supportive comments! π¬
Letβs continue to connect and learn together. ππ€
#day27 #Day27 #BurpSuiteCertifiedPractitioner #CyberSecurity #CertificationChallenge #30DaysOfStudy #InfoSec #LearningJourney #TryHackMe #HackTheBox #PentesterLab #PortSwigger #30dayChallenge #challenge #web #cache #poisoning
1 year ago | [YT] | 7
View 0 replies
Load more