Breaking into cybersecurity can be quite overwhelming. In this workshop, I will present how I created an open learning program to become a pentester.
Based on a science education concept called “Apprenance,” this program allowed me to be hired as a pentester.
Cybersecurity is not only about technical skills. It is also about soft skills. During the talk, the following questions will be addressed:
What is a hacker? What is pentesting? What are the different types of pentest? What are the must-have skills to be a pentester (including soft skills)? How do you pentest a target from A to Z?
After establishing a basic foundation, a deeper dive into web pentesting with SQL injection, Cross-Site Scripting, Directory Traversal, and how to exploit them, including a video demo, will occur.
To go further, we will have a look at remote code execution.
Some tips on how to report these vulnerabilities will be shared.
Participants will also learn about the reality of the life of a pentester through anonymized examples from my personal experiences seen in real contexts.
A Kahoot quiz will happen to have a little fun, and we will dive into practice with some exercises.
My blog: https://csbygb.github.io/
My gitbook: https://csbygb.gitbook.io/pentips/cs-by-gb-pentips/readme