I completely agree with you on the OSCP videos. I completely ignored them and only used the text-based guides/lessons. It was also helpful to just be able to re-read sections or control-F certain terms instead of having to rewind or seek through the videos.
Exactly, and most of the time I like learning from videos, but the videos just need to be made with some passion and personality and not be as stale as the OSCP ones
I took the OSCP cert during the beginning of COVID. I didn't pass, but i learned a lot. I ended up getting a job doing network administration, so i was away from doing anything offensive for 2 years. I heard about the CPTS, being a long-time HTB user, and decided to give it a shot. I have to say that i am impressed, and I'm only a fraction of a way through the course material. I do plan on getting my OSCP, but after the CPTS
CPTS is only a year and a half old - December 2022 was the first month it ever existed. That's most likely the main reason why nobody in HR knows about it. Give it 5 years and it'll probably replace the OSCP in most job descriptions at that point. The best use case for the CPTS, and this is why I'm on the path to it as the next certification after CEH in my portfolio, has got to be future-proofing. Sure OSCP has more clout for now, but it probably won't for much longer.
I have resolved many doubts with this video. My English is not very well, but I understood you well. I have feel that you pronounce very clearly. And that you explain with a smile is perfect!. Thank you
Thank you for this. I have been trying to figure out which direction I wanted to go. I have completed my BS degree in CyberSecurity, so I was working on the next steps. I was looking at OSCP, but the CPTS seems more my style... This was very helpful. Thank you again. I look forward to seeing what else you bring to the RUclips community.
Hi I like this video. I'm a first year CS student and thought I would go for OSCP but it's just way too costly compared to CPTS. I'm thinking of going for CPTS as personal growth and its real world application is so much more worth it to me. My end career is AppSec so I'm trying to go from pentesting to AppSec. Thanks for providing this video.
I would definitely go for CPTS. If you pass CPTS and a company asks for OSCP, just tell them that you're happy to take OSCP in oyur first week on the job, as long as they sponsor it!
Thanks for the video, definitely the price for me is something to take into account, because with a monthly salary of ~~300 usd (latam), imagine having to save for the OSCP exam, for now I am going to take the ejptv2 in December (150 USD) and then I will see if I can save up for the CPTS or some other certification that will help me get my first job in pentesting/IT.
OSCP cert is expensive but the industry in general price gouges on certs. Ive seen firewall vendor specific 1 week bootcamps cost 5000 dollars!!! HTB with CPTS are the real ones for their pricing. You get the material forever too
I got my PNPT, and that's the certification I care about. I'm going for OSCP almost EXCLUSIVELY because it is widely recognized and gets attention. I couldn't sit through the course material because I'm fairly certain based on what I've heard I can pass without it, and the course structure is bad even after the revamp. Offsec really needs to sit down and re-evaluate their business model, though they probably won't do so until HR and employers get wise to the current pentesting cert trends. I can also agree, HTB Academy's course material is absolutely killer. The passionate people are over there.
Is it realistic for a beginner to try to progress like this? Studying daily HTB academy Weekend HTB machines Progress through certificates: 1. eJPT 2. OSCP 3. CPTS Can I do this all just using HTB platform for education and experience? As that is my idea as I always hear that HTB is a higher quality and baseline is far more advanced.
If you can manage to study the academy daily and solve all weekly HTB machines, then within a year or two you'll be ready for a job tbh That's exactly what I did at least!
The thing is learning thru documentation is really hard like hack the box style of learning if there’s a little basic videos learning will be much better
I totally agree with you. I never did any course to get where I'm at, I just played hundreds of CTFs, pwned 100s of boxes and did bug bounty and became a great hacker because of that. But I also acknowlegde that not everybody learns in the same way, so who knows, maybe there are people for whom such a course is incredibly valuable
After watching this video for 6 times and preparing for 5 month+ I'm happy to share that I'm now CPTS certified and have started my job search in the UK(the market is quite tough around the world for entry level pentesters). But I'm quite positive and will aim for an Offsec cert soon if HR's don't recognise the cert soon. It's sad how the OSCP munches so much money out of our pocket just to give us unstable labs and 24 hours of proctored torture.
That is sooooo awesome to hear! Congratulations, this is definitely well deserved. If you do choose to go for the OSCP certificate, you'll be able to pass it without any doubt!
Great video bro, I’m taking my PNPT tomorrow and next step will be Cpts for the knowledge base! I’m a SOC analyst for a bank but wanna make the switch to red team! I also wanna get into bug bounty but I really wanna learn what’s in the Cpts do you think cpts has knowledge I’ll use as a big bounty ?
The CPTS course alone is cheaper, what you bought was all modules up till tier2, all cpts all cbbh sll cdsa courses and one vouches, and the courses you bought are svaliable aways not just 1 year
Never heard of CPTS and ive been in the pentesting field for 3 years. Id recommend OSCP just purely from the recognition standpoint. Imo get CPTS for the cheaper knowledge, and the oscp if you want to land a job/interview.
Congratulations on passing the exam! Just a quick question Do you think CPTS path + PEN-200 course material & exercises and challenge labs are enough for passing OSCP? I've completed the CPTS course and thinking to take the OSCP first. Would like to listen to your opinion. Thanks!
Great video content . i have completed THM JR penetration tester path and searching for next step . Is CPTS suitable for beginner if i dedicated time to learn and solve labs ?
These are some interesting points, and I will probably cancel my Offsec labs subscription based on this review, so you saved me some money. As for certifications, they don't prove skill, but it's hard to prove your value on a resume without something the reviewers understand to be valuable. If they can't see your value within 15 seconds, the resume will be tossed.
Hope I helped you make an informed decision. Let me know how it goes! That's very true. Although I think there are many ways of proving your value within 15 seconds: - CVEs on good projects - "Hacked Microsoft" (Bug bounty with cool companies) ...
I'm also currently doing the OSCP (company sponsored) and while I still have to take the exam, you pretty much sum up my impression so far. I'm quite disappointed by it.
With the CPTS they haven't thought about you only 25 vacation days in my country. Meaning that if you fail the first time your 20 days are gone. No vacation I guess 😂😂😂
Thanks for the video, interesting review of both exam with useful info! You say CPTS exam is composed of 14 machines tied together, so exam is like a HTB pro lab? like Dante prolab but maybe more difficult than this one ?
Got CPTS certified this year. hard work over a year and passed on the first attempt, so happy. I learned alot from the academy but also during the exam. i highly recommend CPTS
Awesome explanation of the two paths. I can only attest to the CPTS as I am half way through the learning path, but they are amazing at showing every single tactic to allow the student more versatility and quick thinking than generic run book strategies. I appreciate the in depth comparison, I will still probably get both Lol.
@@PinkDraconian Why wouldnt you pay for both out of pocket? The OSCP helps in landing a job, and the CTPS is cheap compared. I have the benefit of working at a college, so I get the Academy for 8 a month, after that the cert is only 200, so thats nothing compared to OSCP.
Great video! Is it worth even going back and taking the CPTS exam if i just did the training to get the OSCP? I currently have the security+ and A+ from CompTIA and am going into my junior year in computer science. Any tips would be appreciated! I am about 20% of the way done with the cpts training.
By the way, if you are a student, you can get the CPTS course (all Tier 2 modules) for only $8! I think $219 for the great course and the exam is a great deal, and I am currently preparing for the exam. After completing the course, do you recommend any boxes to know if I am ready?
I am studying for cpts, really hard for me but lovely. A question, What program do you use to take notes and screenshots during the penetration tester to always have everything under control and also to come back? How do you organize everything so you don't go crazy?
The course covers everything you need. Be sure to take great notes, because the exam is really hard. It definitely helps to put your course training into practice by taking the Dante prolab for example!
Great video thanks! Is CPTS too hard for a beginner in cybersecurity? I have only completed Google cybersecurity certificate so far with no IT background
Hi, I'm currently watching your "Introduction to Binary Exploitation" playlist. I saw that 2 years ago you were using IDA for debugging. In the meantime, I heard Ghidra got its own debugger as well, does this mean I would be able to do with Ghidra, everything you did with IDA? Have you tried it? Is Ghidra overall the better option? I'm trying to go all in and I think that Ghidra is the future, but IDA's decompiler seem a bit more easier to read
Do you think cpts is good for a beginner with exp as a net/sysadmin? Currently doing cbbh to do bug bounty on the side but really like the training of htb, so considering cpts after cbbh. Wondering about pnpt vs cpts after cbbh, lastly oscp after those should be a breeze.
Ta vidéo est vraiment génial, ca me donne vraiment envi de lancer dans les cours du CPTS mais on ma aussi conseillé les cours de TCM-academy, esque tu peux m'orienter ?
Ma francais n'est pas tres bien 😅 Donc je vais continuer en anglais! I haven't taken the TCM academy courses myself, so I cannot say whether or not they're useful. I think they definitely hold value, but are in a space between OSCP and CPTS. OSCP is "easy(er)" and very very well regarded in the world. CPTS is very very difficult and doesn't have much recognition, but for the people that do know it, it holds a lot of value. As far as I see, the TCM courses lie somewhere in between where they are reasonable to complete and have some recognition.
great video, so what would you recommend for web app pentesting if both of these fall short on that front? I'm planning on taking CPTS either way but I really wanna go deep with web app pentesting, thanks in advance!
Hey fam, after you have done CPTS and want to apply for a job, send the link to this video to the HR guys. HRs and talent acquisitions really need to get educated about the field, I feel!
Im 10 months in and i got 64%, but i have homework from school. It depends on your skill level that you start CPTS with but I it can be done in about 6 months💪
@@PinkDraconian Were you giving full time for the course? I'm starting the path, but I'm also doing a full time job with that. So I'm not sure how much time it'll take.
I've completed the pentest pathway and have an exam ticket. How would you compare the difficulty to something like Dante or Offshore. I've completed Dante and a good bit through Offshore but still second guessing if I'm ready for CPTS.
@@PinkDraconian thanks for the response, looking to get into this field properly but so many places to start 😫 not sure if I wanna do a+ and all that or just immediately go to google cybersec course
@@sambrismo8981 Anything you do in the world of hacking benefits you. There's no right or wrong path, just a lot of hard work. If you put in the effort, you'll get there
Cool man,will start with the CPTS,dunno if i will be able to afford the exams though👎🏼👎🏼 converting dollars to South-African rands makes it crazy expensive!!
i am 18 and completely new to cybersecurity. currently i just started trying to get my sec+ as my first certificate, should take about 1-2 months. But I am completely not sure on what to do next. I am looking at these 2 certs but not sure if i will be even closely ready after the sec+ with no experience
I don't agree with you, i pass OSCP and the lab was much stable than HTB pro labs or even random machine (it's literraly the jungle), in OSCP you can reset a simple machine, in HTB you need to vote (lol) to reset the entire lab, i got much struggle with HTB pro labs than OSCP labs and this was quite frustrating.
Yeah, I'm doing that rn. Do you think that is enough to pass oscp + tcm ethical hacking course and tj nulls list? Would you have any other recommendations?
Currently studying for OSCP and doing a load of Academy modules as side quests. The HTB Academy modules are IMO some of the best materials out there, as the guy mentions on the video. They go far more in-depth than PEN-200. Think they definitely help.
@@PinkDraconian Thank you for the video mate, I hadn't considered the HTB exam before but now I definitely will. I think I'm also going to try to do Dante before the OSCP exam.
I feel the same on certifications and use them as use-case. Getting a cert shows your minimum competence to whoever wants to hire you, and not your whole set of skills. Doing OSED currently (Completed the old OSCP w/ binary exploitation) - OSED videos were AI and rushed. Sometimes they don't match the material. - Tools are limited, can only use windbg, ida64 free, and some others. Cannot use gdb, ghidra, etc. - Some great insight and content on Windows systems, I primarily focused on nix - it's only x86 which is outdated and its costly for outdated arch material. - The lab access is no where near enough to someone that doesnt have strong familiarity with pwn.
You mention that after your first failed attempt you can CONTINUE in maximum 14 days.That means the environment is gonna be exactly the same and you wont start over right?? It is not very clearly stated in HTB's academy site
Hey man I am a beginner in ethical hacking at any cost I have fixed to land my 1st job this year so I want know that by doing only HTB academy Pentester one can I able to get good knowledge for me or else do I need to do something else
@@PinkDraconian wonder if the cbbh will be too. Heard the burpsuite practitioner is pretty tough. Would like to see more webapp certs You don't have a discord server right?
@@lukeempty3386 the CBBH is not very basic web aspect, its HTB version of OSWE. Its a Cert Based on Web Pentesting, both Offsec and HTB have certs dedicated to Web Pentesting thats why the CTPS and OSCP are basic in that area, because they have completely diffrent certs for that area.
Why do people compare certification all the time. REQUIRMENT is what companies aim there business toward. Its like comparing Security + to BLT1 or other well trained certification. Its about what Business want and this is what Companies like OffSec aim there stuff toward. The Best training and certification OffSec has and it came out of their mouth is the OSWE and they understand what OSCP means as business preference. So you and a million other people have said the same thing but in a different approach about the OSCP. My opinion its basic and doesn't compare to the real world..
OSCP was my first pentesting cert and my first real introduction to pentesting. After I passed the exam I tried my first HTB easy box and got my ass beat hahaha
@@PinkDraconian Yes I noticed that as while I was studying for it I had a few people ask me for my report when I completed my OSCP in the hopes they would get the same exam.
@@PinkDraconian I don't work in a Pen testing field. I'm a principal security engineer so only did it for personal learning. Maybe I would have noticed this also if I knew anyone who completed it.
Brother I really love your content and everything but as someone that had fail the OSCP this video just makes it worse for us, why? Because the reason you saw people talking about it in Twitter was because Offsec be changing things everytime a RUclipsr like you come out making these videos. Remember not everyone have the same skills or time to study them deep. You should also tell people that you aren't a noob that you are a very skilled person with years of doing this and CTFs that helped you a lot. Don't make it harder for people trying to get this cert because as you said, we need this for work
You do not need a piece of paper for work. You need skills for work. And this certificate is a piece of paper that should prove skills, which at this point, I don't think it adequately does. I know it is tough to hear, but if someone doesn't have the skills needed to get the OSCP certification, then I would not trust them with performing an adequate job on a penetration test. The things you find and don't find during a test can have great consequences for the development teams behind applications, and for the safety of everyone on the internet. We need to make sure that we keep quality high.
I can agree with you in the first part, because is just a piece of paper, but is a paper that companies want. But you are wrong about the last part, because not being able to hack 6 boxes in only 24 hours without any tools doesn't mean you cant be trusted or stupid. The OSCP is based on CTFs, unreal things like rabbit holes, texts hidden on photos and more. where in real life you can use any tools you want and will have the time to do your work. In the OSCP you are looking into an one way only entry. At the moment I'm doing a Web PT for a multinational client, in the first few hours I had a RCE(root), DOM xss, No Rate Limitations leading to Dos, Tokens for Shopify and more stuff. I had Pwned more than 5 different US Federal agencies, Atlassain, CVE for TP-Link, have gifts from Google themself for my work on their products, same goes for Bugcrowd, Pinterest, TripAdvisor, with more than 100 valid reports on companies that big where are not only being tested everyday by thousand of people but millions are spend to keep them secure. Pwned a few goverment servers, And I sound like someone that cant be trusted it because fail the oscp? I don't think so, I was able to do all this because these were a real PT. Where I could do whatever I wanted in days of work, testing applications/devices with real problems, not rabbit holes. What you will learn the most in the OSCP is PE that's all, and once you get that, you can PE on at least 95% of most clients servers. @@PinkDraconian
As I said in my video: There are many ways of getting the experience needed: CVE's, CTFs, Bug Bounty, ...; You clearly have the experience needed. My earlier statement was geared towards people who don't have the other stuff. I think OSCP is terrible, I don't like it at all, but we need to have a way of deciding who's skilled enough and who isn't. You clearly are skilled enough!
@@PinkDraconian Yes, now we are in the same page my bad I didn't put out my background first. But yeah are right and as you said people need a way to know who's valid.
I completely agree with you on the OSCP videos. I completely ignored them and only used the text-based guides/lessons. It was also helpful to just be able to re-read sections or control-F certain terms instead of having to rewind or seek through the videos.
Exactly, and most of the time I like learning from videos, but the videos just need to be made with some passion and personality and not be as stale as the OSCP ones
I took the OSCP cert during the beginning of COVID. I didn't pass, but i learned a lot. I ended up getting a job doing network administration, so i was away from doing anything offensive for 2 years. I heard about the CPTS, being a long-time HTB user, and decided to give it a shot. I have to say that i am impressed, and I'm only a fraction of a way through the course material. I do plan on getting my OSCP, but after the CPTS
Go for it! Don't let your dreams be dreams! With a lot of hard work and dedication, you got this!
update on your progress :)
@@cringykid5306 I'm currently 25.21% into the PenTester modules
You had me in the first sentence. You have the right mindset, and great knowledge. Gonna watch the rest tonight.
Yep, I watched it, and it was a fantastically detailed and level headed review in my opinion. Thanks for making this and your channel in general.
Thanks for these comments. Greatly appreciated!
CPTS is only a year and a half old - December 2022 was the first month it ever existed. That's most likely the main reason why nobody in HR knows about it. Give it 5 years and it'll probably replace the OSCP in most job descriptions at that point.
The best use case for the CPTS, and this is why I'm on the path to it as the next certification after CEH in my portfolio, has got to be future-proofing. Sure OSCP has more clout for now, but it probably won't for much longer.
Don't bother getting CEH tho
I have resolved many doubts with this video. My English is not very well, but I understood you well. I have feel that you pronounce very clearly. And that you explain with a smile is perfect!. Thank you
Thank you! 😃 Where are you from?
Spain
What do you think about the PNPT?
Thank you for this. I have been trying to figure out which direction I wanted to go. I have completed my BS degree in CyberSecurity, so I was working on the next steps. I was looking at OSCP, but the CPTS seems more my style... This was very helpful. Thank you again.
I look forward to seeing what else you bring to the RUclips community.
Glad it was helpful! Best of luck on your journey!
where can iget resourcesa / curriculum or list of material what i need to learn to become penetration/cybersecurity tester ?
Do you think getting your degree was worth it? I’m wondering if it’s worth going to college
@@alechernandez5506 yea same
Good to see you back ❤
I've learnt a lot on AD pentesting from your videos
Happy to hear that!
Just came across your video searching OSCP. I liked it and you covered a lot useful insights. Thank you
Thank you!
That was such a cool video dude, so much good advice packed in this video, I'm going for both but focusing on CPTS for the true skills 💪
Glad it was helpful! Best of luck, you got this!
Great video! Thank you! It helps me a lot with the decision what certification to take next :)
Glad it was helpful!
Thanks for your guidance. I'm a beginner going for both. This helps a lot
Happy it was helpful! Best of luck!
Hi I like this video. I'm a first year CS student and thought I would go for OSCP but it's just way too costly compared to CPTS.
I'm thinking of going for CPTS as personal growth and its real world application is so much more worth it to me. My end career is AppSec so I'm trying to go from pentesting to AppSec. Thanks for providing this video.
I would definitely go for CPTS. If you pass CPTS and a company asks for OSCP, just tell them that you're happy to take OSCP in oyur first week on the job, as long as they sponsor it!
Thanks for the video, definitely the price for me is something to take into account, because with a monthly salary of ~~300 usd (latam), imagine having to save for the OSCP exam, for now I am going to take the ejptv2 in December (150 USD) and then I will see if I can save up for the CPTS or some other certification that will help me get my first job in pentesting/IT.
Thanks for sharing! That's insane. Definitely do not pay for OSCP then! It's a waste of money!
Thank you for the very detailed review, I have my OSCP, from years ago, hoping to take my CPTS end of the year. \o/ appreciate sharing the content.
Glad it was helpful! Best of luck!
@@PinkDraconian thanks again i was successfull in passing end of 2023 my CPTS exam, thanks for content and overview of this exam helped me. \o/
@@JuanBotes Congratulations! What a feat! 🎉
Great content! This makes me rethink about what cert I should go for.
Thanks!
OSCP cert is expensive but the industry in general price gouges on certs. Ive seen firewall vendor specific 1 week bootcamps cost 5000 dollars!!!
HTB with CPTS are the real ones for their pricing. You get the material forever too
Exactly. Also with Firewall vendors, they clearly only target businesses, whereas OSCP is needed to even get a job
Yes bro!! Burp cert next! 😉
Burp cert= hardest cert on Earth
@chihoangcao6622 not if you wait for black Friday and take it multiple times in a row for $8/attempt 😂
Challenge accepted
wait today is Black Friday?
@@AlecMaly
I got my PNPT, and that's the certification I care about. I'm going for OSCP almost EXCLUSIVELY because it is widely recognized and gets attention. I couldn't sit through the course material because I'm fairly certain based on what I've heard I can pass without it, and the course structure is bad even after the revamp. Offsec really needs to sit down and re-evaluate their business model, though they probably won't do so until HR and employers get wise to the current pentesting cert trends. I can also agree, HTB Academy's course material is absolutely killer. The passionate people are over there.
Fully agree there. Hopefully the competition of the last couple of years will spark innovation!
Is it realistic for a beginner to try to progress like this?
Studying daily HTB academy
Weekend HTB machines
Progress through certificates:
1. eJPT
2. OSCP
3. CPTS
Can I do this all just using HTB platform for education and experience? As that is my idea as I always hear that HTB is a higher quality and baseline is far more advanced.
If you can manage to study the academy daily and solve all weekly HTB machines, then within a year or two you'll be ready for a job tbh
That's exactly what I did at least!
I subscribed to your channel. I like the way you communicate concepts, it’s very unique. Thanks for the great content
Love your content, really helped me learn. Nice to see a new video from you!
Awesome, thank you!
The thing is learning thru documentation is really hard like hack the box style of learning if there’s a little basic videos learning will be much better
I totally agree with you. I never did any course to get where I'm at, I just played hundreds of CTFs, pwned 100s of boxes and did bug bounty and became a great hacker because of that.
But I also acknowlegde that not everybody learns in the same way, so who knows, maybe there are people for whom such a course is incredibly valuable
After watching this video for 6 times and preparing for 5 month+ I'm happy to share that I'm now CPTS certified and have started my job search in the UK(the market is quite tough around the world for entry level pentesters). But I'm quite positive and will aim for an Offsec cert soon if HR's don't recognise the cert soon. It's sad how the OSCP munches so much money out of our pocket just to give us unstable labs and 24 hours of proctored torture.
That is sooooo awesome to hear! Congratulations, this is definitely well deserved. If you do choose to go for the OSCP certificate, you'll be able to pass it without any doubt!
You are fantastic dood, sincere awesomeness
Thank you!
Great video bro, I’m taking my PNPT tomorrow and next step will be Cpts for the knowledge base! I’m a SOC analyst for a bank but wanna make the switch to red team!
I also wanna get into bug bounty but I really wanna learn what’s in the Cpts do you think cpts has knowledge I’ll use as a big bounty ?
If you want to get into bug bounty, check out the CBBH exam!
How did the PNTP exam go? I'm currently studying for it.
@@galloe passed it
The CPTS course alone is cheaper, what you bought was all modules up till tier2, all cpts all cbbh sll cdsa courses and one vouches, and the courses you bought are svaliable aways not just 1 year
Exactly, amazing stuff!
Never heard of CPTS and ive been in the pentesting field for 3 years. Id recommend OSCP just purely from the recognition standpoint.
Imo get CPTS for the cheaper knowledge, and the oscp if you want to land a job/interview.
Exactly, fully agree!
I am also listening your video at 2.0x 😂😂 2:58
Hahaha 😂
Congratulations on passing the exam! Just a quick question
Do you think CPTS path + PEN-200 course material & exercises and challenge labs are enough for passing OSCP?
I've completed the CPTS course and thinking to take the OSCP first. Would like to listen to your opinion. Thanks!
Yes, definitely. The CPTS course was more than enough for me to pass OSCP without issues!
@@PinkDraconian Thanks!
Great video content . i have completed THM JR penetration tester path and searching for next step . Is CPTS suitable for beginner if i dedicated time to learn and solve labs ?
If you dedicate enough time, totally! Go for it, you'll learn a lot!
These are some interesting points, and I will probably cancel my Offsec labs subscription based on this review, so you saved me some money.
As for certifications, they don't prove skill, but it's hard to prove your value on a resume without something the reviewers understand to be valuable. If they can't see your value within 15 seconds, the resume will be tossed.
Hope I helped you make an informed decision. Let me know how it goes!
That's very true. Although I think there are many ways of proving your value within 15 seconds:
- CVEs on good projects
- "Hacked Microsoft" (Bug bounty with cool companies) ...
I'm also currently doing the OSCP (company sponsored) and while I still have to take the exam, you pretty much sum up my impression so far. I'm quite disappointed by it.
Good to hear that I'm not the only one
Great video review!! Thank you 🙂✌🏼
My pleasure!
Hey, What do you think about PNPT cert? Great video by the way
Haven't taken it. Should I?
@@PinkDraconian The cyber mentor's PNPT cert has very good feedback. Would love to know from you as you already have both CPTS and OSCP😀
With the CPTS they haven't thought about you only 25 vacation days in my country. Meaning that if you fail the first time your 20 days are gone. No vacation I guess 😂😂😂
That's very true
Hello PinkaDraconian
Do you think that With
-cpts path
-tj null list
-pen200 and Labs
Will be enough to pass the OSCP?
Thanks 😊
That should 100% be plenty!
Thanks for the video, interesting review of both exam with useful info!
You say CPTS exam is composed of 14 machines tied together, so exam is like a HTB pro lab? like Dante prolab but maybe more difficult than this one ?
Yes, correct. The Dante lab is very similar, the exam is just harder. But Dante is great prep
@@PinkDraconian Great then I've a lot of work before taking the exam then, thanks for the answer
@@vinnvi Best of luck! You got this!
Got CPTS certified this year. hard work over a year and passed on the first attempt, so happy. I learned alot from the academy but also during the exam. i highly recommend CPTS
That is awesome!
Congratulations 🎊 And Goodluck
great content, I'm preparing for CPTS atm
Thanks and best of luck! You got this!
Awesome explanation of the two paths. I can only attest to the CPTS as I am half way through the learning path, but they are amazing at showing every single tactic to allow the student more versatility and quick thinking than generic run book strategies. I appreciate the in depth comparison, I will still probably get both Lol.
Glad it was helpful! If you're able to get both, for sure go for it. I wouldn't pay for both out of pocket tho 😅
@@PinkDraconian Why wouldnt you pay for both out of pocket? The OSCP helps in landing a job, and the CTPS is cheap compared.
I have the benefit of working at a college, so I get the Academy for 8 a month, after that the cert is only 200, so thats nothing compared to OSCP.
@@cyberlocc I personally find it not worth the money,but hey, that's just my personal opinion
So great! Congrats
Thank you! Cheers!
Which is more advanced or better: CPENT from EC-Council or CPTS?
I haven't had a look at CPENT at all, so I wouldn't know!
Great video! Is it worth even going back and taking the CPTS exam if i just did the training to get the OSCP? I currently have the security+ and A+ from CompTIA and am going into my junior year in computer science. Any tips would be appreciated! I am about 20% of the way done with the cpts training.
Right now, I don't think it's worth taking the CPTS exam if you already have OSCP. Best bet is to do the CPTS training and then take the OSCP exam.
🎊 Congratulations for passing CPTS exam . 🎊
I really like your videos.
Keep up the good work.
Glad you like them!
i love that you are replying everyone
Always! It's nice to interact with everyone!
As a dad I really have no time for cpts exam, but I really love the training and will try to complete it. then will go for oscp😂
Yea, I think your plan is very sound tho! Best of luck!
By the way, if you are a student, you can get the CPTS course (all Tier 2 modules) for only $8! I think $219 for the great course and the exam is a great deal, and I am currently preparing for the exam. After completing the course, do you recommend any boxes to know if I am ready?
That is an amazing deal indeed!
I think that for CPTS the boxes won't really help too much. It's all about the networks and AD for me.
I am studying for cpts, really hard for me but lovely. A question, What program do you use to take notes and screenshots during the penetration tester to always have everything under control and also to come back? How do you organize everything so you don't go crazy?
I always use GitBook
thank you for answer, you think is better than obsidian?@@PinkDraconian
Bravo! Great content . Do you think the HTB academy is enough to pass the CPTS and won’t mind if you share tips on studying the CPTS path
It doesn't matter if HTB Academy is enough or not. You need the right skill to pass. For that, HTB Academy helps.
The course covers everything you need. Be sure to take great notes, because the exam is really hard. It definitely helps to put your course training into practice by taking the Dante prolab for example!
@@PinkDraconian thank you and appreciate the tips! Great content. Bravo!
great video i was thinking of doing one of these certifications
Go for it, with a lot of work, you'll make it!
Great video thanks! Is CPTS too hard for a beginner in cybersecurity? I have only completed Google cybersecurity certificate so far with no IT background
Yes, CPTS is really really difficult. If I were you, I'd take the course, but not the exam
Hi, I'm currently watching your "Introduction to Binary Exploitation" playlist.
I saw that 2 years ago you were using IDA for debugging.
In the meantime, I heard Ghidra got its own debugger as well, does this mean I would be able to do with Ghidra, everything you did with IDA?
Have you tried it? Is Ghidra overall the better option? I'm trying to go all in and I think that Ghidra is the future, but IDA's decompiler seem a bit more easier to read
I haven't done any binary exploitation in the last year, so I wouldn't know!
Do you think cpts is good for a beginner with exp as a net/sysadmin? Currently doing cbbh to do bug bounty on the side but really like the training of htb, so considering cpts after cbbh. Wondering about pnpt vs cpts after cbbh, lastly oscp after those should be a breeze.
I think the CPTS course is definitely a great next step
Ta vidéo est vraiment génial, ca me donne vraiment envi de lancer dans les cours du CPTS mais on ma aussi conseillé les cours de TCM-academy, esque tu peux m'orienter ?
Ma francais n'est pas tres bien 😅 Donc je vais continuer en anglais!
I haven't taken the TCM academy courses myself, so I cannot say whether or not they're useful. I think they definitely hold value, but are in a space between OSCP and CPTS.
OSCP is "easy(er)" and very very well regarded in the world.
CPTS is very very difficult and doesn't have much recognition, but for the people that do know it, it holds a lot of value.
As far as I see, the TCM courses lie somewhere in between where they are reasonable to complete and have some recognition.
great video, so what would you recommend for web app pentesting if both of these fall short on that front? I'm planning on taking CPTS either way but I really wanna go deep with web app pentesting, thanks in advance!
I haven't taken the Portswigger exam yet myself, but I've heard great things about it. I think that's the way to go
@@PinkDraconiancheers man appreciate it
All to the point, thanks
Thank you for watching and best of luck in your certification path!
Finished Pentester Path, Learning more before the Exam, I am so scared.
Best of luck! It's hard but very rewarding!
What are the basics I should have before I start learning Cpts?
You should probably be comfortably doing easy boxes on HTB
좋은 비디오 감사합니다
열심히 해보겠습니다
Best of luck!
Have you done the Bug Bounty Hunter course from Hack the Box? I would like to hear you thoughts on that as well if you have. I enjoyed the video!
I haven't yet done that one. Should I?
@@PinkDraconian I think so, it seemed pretty good. But I am no expert...
@@The_Dark_Cats but you are a certified bug bounty hunter!
Im preparing for CPTS first because i don't like the idea of losing so much money on OSCP
I think that's a great way of approaching this!
Hey fam, after you have done CPTS and want to apply for a job, send the link to this video to the HR guys. HRs and talent acquisitions really need to get educated about the field, I feel!
Haha exactly!
Great Video!
How long take for you to finish the CPTS Course?
It took me about 3 months to finish the course
Im 10 months in and i got 64%, but i have homework from school. It depends on your skill level that you start CPTS with but I it can be done in about 6 months💪
yah definitely it varies from person to person. However the most important thing is to study efficiently regardless of the time it takes
@@Frenzaahh
@@PinkDraconian
Were you giving full time for the course?
I'm starting the path, but I'm also doing a full time job with that. So I'm not sure how much time it'll take.
@@joelchristian4078 I did the entire course outside of work hours.
Great video
Thanks!
I've completed the pentest pathway and have an exam ticket. How would you compare the difficulty to something like Dante or Offshore. I've completed Dante and a good bit through Offshore but still second guessing if I'm ready for CPTS.
I haven't completed Dante or Offshore, so I wouldn't know. I heard it's harder than Dante and easier than Offshore
@@PinkDraconian ahh sounds like it might be just at my level then! thanks for the reply
What do you think about HTB academy?
Love it. Great learning materials imo
@@PinkDraconian thanks for the response, looking to get into this field properly but so many places to start 😫 not sure if I wanna do a+ and all that or just immediately go to google cybersec course
@@sambrismo8981 Anything you do in the world of hacking benefits you. There's no right or wrong path, just a lot of hard work. If you put in the effort, you'll get there
Cool man,will start with the CPTS,dunno if i will be able to afford the exams though👎🏼👎🏼 converting dollars to South-African rands makes it crazy expensive!!
Yea, that's what I hate about certs...
What do you think of the CyberWarfare Certified Purple Team Penetration Analyst? Is a good Certification?
Never even heard of it 😅
What do you recommend for a purple team certification?
Thanks for responding.
Is possible for you to be a mentor to me. Someone to whom I can speak to when I’m faced with a challenge?
A cool review and comparison, because I plan to pass both exams, just kill two goals, get a job and become a pro-hacker.
Haha! I believe in you, you'll get those goals completed in no time!
i am 18 and completely new to cybersecurity. currently i just started trying to get my sec+ as my first certificate, should take about 1-2 months. But I am completely not sure on what to do next. I am looking at these 2 certs but not sure if i will be even closely ready after the sec+ with no experience
Start with the HTB academy as it's rather cheap and assess from there how easy going that is!
@@PinkDraconian so you recommend to get the cpts just as a tool to learn?
@@Random-yz8gb Totally!
I don't agree with you, i pass OSCP and the lab was much stable than HTB pro labs or even random machine (it's literraly the jungle), in OSCP you can reset a simple machine, in HTB you need to vote (lol) to reset the entire lab, i got much struggle with HTB pro labs than OSCP labs and this was quite frustrating.
I'm comparing the CPTS exam vs the OSCP exam, not the OSCP exam vs HTB labs
Is the cpts course the modules they recommend you complete for cpts on htb, or is it separate?
It's the penetration tester path on the academy
Yeah, I'm doing that rn. Do you think that is enough to pass oscp + tcm ethical hacking course and tj nulls list? Would you have any other recommendations?
HI bro
I want to ask you should I have to study CCNA before going to Cybersecurity
Not necessarily, any knowledge is a bonus tho
Which one is more similar to CPTS ? Dante por zephyr ?
I haven't done any yet. I think Dante is a bit easier than CPTS and Zephyr is the same level
Hey, i know im very late, but do you think someone that has had the htb academy course could potentially be able to go for the oscp?
Currently studying for OSCP and doing a load of Academy modules as side quests. The HTB Academy modules are IMO some of the best materials out there, as the guy mentions on the video. They go far more in-depth than PEN-200. Think they definitely help.
I think that if you can do all the labs in the HTB academy course, then you should be ready to go for OSCP
Yes, exactly my opinion as well!
@@AK-us2di thanks both of u guys!!!
@@PinkDraconian Thank you for the video mate, I hadn't considered the HTB exam before but now I definitely will. I think I'm also going to try to do Dante before the OSCP exam.
I feel the same on certifications and use them as use-case. Getting a cert shows your minimum competence to whoever wants to hire you, and not your whole set of skills.
Doing OSED currently (Completed the old OSCP w/ binary exploitation)
- OSED videos were AI and rushed. Sometimes they don't match the material.
- Tools are limited, can only use windbg, ida64 free, and some others. Cannot use gdb, ghidra, etc.
- Some great insight and content on Windows systems, I primarily focused on nix
- it's only x86 which is outdated and its costly for outdated arch material.
- The lab access is no where near enough to someone that doesnt have strong familiarity with pwn.
I think money talks and that's why they rush courses...
You mention that after your first failed attempt you can CONTINUE in maximum 14 days.That means the environment is gonna be exactly the same and you wont start over right??
It is not very clearly stated in HTB's academy site
The lab will be the same lab, so you can solve the things you already solved by doing them again
@@PinkDraconian i hope so ...again great video thanks a lot
I agree 100% with your view, I took the OSCP recently and have started the CPTS. Great reviews!
Best of luck!
great.
Thanks!
is the cpts path on htb academy will be enough for oscp
Yes.
wait only 150 people have completed the cpts exam? how do you find that out
When you complete the exam, it tells you how many other people have completed it. When I did the exam, it was only 70 other people.
About blue Team? What do you recommend?
I don't really have enough knowledge to give you input on that, sorry!
Hey man I am a beginner in ethical hacking at any cost I have fixed to land my 1st job this year so I want know that by doing only HTB academy Pentester one can I able to get good knowledge for me or else do I need to do something else
Anything you do that's hacking related will help you. The academy is great
would you recommend me buying htb cert would i will be able to pass the cert
I cannot answer that question for you
thanks for video but how about CREST CRT?
Haven't taken it. Do you recommend it?
How would you compare cpts to pnpt?
Haven't done pnpt
100% true
Thank you!
Just do PNPT. Gaining traction with recognition, good price, great course and videos, free retake and great company. Also very good AD
I'll check it out! Maybe that can be my next cert
@@PinkDraconianworking on CBBH and the port swigger exam now. Was the web aspect of CPTS difficult?
@@lukeempty3386 No the web aspect of CPTS was really basic
@@PinkDraconian wonder if the cbbh will be too. Heard the burpsuite practitioner is pretty tough. Would like to see more webapp certs
You don't have a discord server right?
@@lukeempty3386 the CBBH is not very basic web aspect, its HTB version of OSWE. Its a Cert Based on Web Pentesting, both Offsec and HTB have certs dedicated to Web Pentesting thats why the CTPS and OSCP are basic in that area, because they have completely diffrent certs for that area.
yeah i know u are using nvidia ai for making an eye contact
Yea haha, I love it!
how did u know that there is 150+ people has cpts ? from where ? i need to check
When you get your certificate, it says which number you were
Nice , watting my reviews @@PinkDraconian
Waiting for Bscp review!
What's that?
@@PinkDraconian I bet you know it if you said on Twitter this is gonna be ur next cert :D
@@mateuszhaba2456 ah haha, never realised that's the acronym
@@PinkDraconian 😂
Why do people compare certification all the time. REQUIRMENT is what companies aim there business toward. Its like comparing Security + to BLT1 or other well trained certification. Its about what Business want and this is what Companies like OffSec aim there stuff toward. The Best training and certification OffSec has and it came out of their mouth is the OSWE and they understand what OSCP means as business preference. So you and a million other people have said the same thing but in a different approach about the OSCP. My opinion its basic and doesn't compare to the real world..
These certificates are often compared, because they claim similar things
Sounds like it's OffSec themselves who should try harder.
Right on the tee there 😅
Can i choose CPTS for my firts certificate for penetration tester???!!
Yes you can, it's a great challenge!
OSCP was my first pentesting cert and my first real introduction to pentesting. After I passed the exam I tried my first HTB easy box and got my ass beat hahaha
Hahaha, that's exactly how I feel as well
how possible is it to get sponsored by an organization when you are freelance. I'd go for oswe if i had sponsorship.
I'm not sure about that
make a video about nuclei🔥
I already have 2 videos on Nuclei!
- ruclips.net/video/jbmFYydIWXE/видео.html
- ruclips.net/video/ewP0xVPW-Pk/видео.html
If the CPTS exam is not monitored their is no real value to it in my opinion as their are too many people that would cheat to get ahead.
That's a valid concern. I think it is quite susceptible to cheating, but I also think cheating the OSCP is trivial if you want to
@@PinkDraconian Yes I noticed that as while I was studying for it I had a few people ask me for my report when I completed my OSCP in the hopes they would get the same exam.
@@gimmegaming5345 I actually had the exact same exam as my colleague who did it a couple of months before me
@@PinkDraconian I don't work in a Pen testing field. I'm a principal security engineer so only did it for personal learning. Maybe I would have noticed this also if I knew anyone who completed it.
Brother I really love your content and everything but as someone that had fail the OSCP this video just makes it worse for us, why?
Because the reason you saw people talking about it in Twitter was because Offsec be changing things everytime a RUclipsr like you come out making these videos.
Remember not everyone have the same skills or time to study them deep. You should also tell people that you aren't a noob that you are a very skilled person with years of doing this and CTFs that helped you a lot.
Don't make it harder for people trying to get this cert because as you said, we need this for work
You do not need a piece of paper for work. You need skills for work. And this certificate is a piece of paper that should prove skills, which at this point, I don't think it adequately does.
I know it is tough to hear, but if someone doesn't have the skills needed to get the OSCP certification, then I would not trust them with performing an adequate job on a penetration test. The things you find and don't find during a test can have great consequences for the development teams behind applications, and for the safety of everyone on the internet. We need to make sure that we keep quality high.
I can agree with you in the first part, because is just a piece of paper, but is a paper that companies want. But you are wrong about the last part, because not being able to hack 6 boxes in only 24 hours without any tools doesn't mean you cant be trusted or stupid. The OSCP is based on CTFs, unreal things like rabbit holes, texts hidden on photos and more. where in real life you can use any tools you want and will have the time to do your work. In the OSCP you are looking into an one way only entry.
At the moment I'm doing a Web PT for a multinational client, in the first few hours I had a RCE(root), DOM xss, No Rate Limitations leading to Dos, Tokens for Shopify and more stuff. I had Pwned more than 5 different US Federal agencies, Atlassain, CVE for TP-Link, have gifts from Google themself for my work on their products, same goes for Bugcrowd, Pinterest, TripAdvisor, with more than 100 valid reports on companies that big where are not only being tested everyday by thousand of people but millions are spend to keep them secure. Pwned a few goverment servers,
And I sound like someone that cant be trusted it because fail the oscp? I don't think so, I was able to do all this because these were a real PT. Where I could do whatever I wanted in days of work, testing applications/devices with real problems, not rabbit holes. What you will learn the most in the OSCP is PE that's all, and once you get that, you can PE on at least 95% of most clients servers. @@PinkDraconian
As I said in my video: There are many ways of getting the experience needed: CVE's, CTFs, Bug Bounty, ...; You clearly have the experience needed.
My earlier statement was geared towards people who don't have the other stuff. I think OSCP is terrible, I don't like it at all, but we need to have a way of deciding who's skilled enough and who isn't. You clearly are skilled enough!
@@PinkDraconian Yes, now we are in the same page my bad I didn't put out my background first.
But yeah are right and as you said people need a way to know who's valid.
Portugues?
No 😅
Oscp is easier than cpts? Thats new lol
So much easier. Like worlds of difference
@@PinkDraconian God, that's crazy.