Breaking into cybersecurity can be quite overwhelming. In this workshop, I will present how I created an open learning program to become a pentester.

Based on a science education concept called “Apprenance,” this program allowed me to be hired as a pentester.

Cybersecurity is not only about technical skills. It is also about soft skills. During the talk, the following questions will be addressed:

What is a hacker? What is pentesting? What are the different types of pentest? What are the must-have skills to be a pentester (including soft skills)? How do you pentest a target from A to Z?

After establishing a basic foundation, a deeper dive into web pentesting with SQL injection, Cross-Site Scripting, Directory Traversal, and how to exploit them, including a video demo, will occur.

To go further, we will have a look at remote code execution.

Some tips on how to report these vulnerabilities will be shared.

Participants will also learn about the reality of the life of a pentester through anonymized examples from my personal experiences seen in real contexts.

A Kahoot quiz will happen to have a little fun, and we will dive into practice with some exercises.

My blog: https://csbygb.github.io/

My gitbook: https://csbygb.gitbook.io/pentips/cs-by-gb-pentips/readme

Linkedin: https://www.linkedin.com/in/gabriellebotbol/

Twitter: https://twitter.com/Gabrielle_BGB

Gabrielle Botbol
https://csbygb.github.io/