Learning Update-Week 6

Despite the week being a bit shorter due to a statutory holiday, I worked through pretty much what I set out to.

PentesterLab-Essential Badge

Finished off 5 exercises, when I had planned for 3. I need to go back and finish the last of the Authorization exercises, as I wasn’t able to complete it. Basically, it’s a replay attack, and the guidance from PentesterLab is using Burp Suite; I’m using ZAP since my Kali install is on a Raspberry Pi, and I haven’t quite figured out how to make it do what I need yet.

TryHackMe

As planned, I finished off the Intro to LAN and OSI Model modules. While this is certainly not new material for me, it’s been fun to get a quick refresher on the basics. I like that their approach is similar to PentesterLab, in that the modules are broken down into small chunks that check your knowledge as you go. To me, this is a solid educational approach.

Reading-Explore It!: Reduce Risk and Increase Confidence with Exploratory Testing

I allowed myself to get distracted reading a different book (The $100 Startup), but still made some progress.

What Learning Is On The Agenda This Week?

PentesterLab-Essential Badge

As I mentioned above, I want to get back to looking at that last Authorization exercise. After that, I’m planning on getting through at least 3 more exercises besides that.

TryHackMe

The next module is Packets and Frames, followed by Extending your Network. Getting through these in a week should be pretty straightforward.

Reading-Explore It!: Reduce Risk and Increase Confidence with Exploratory Testing

Should be done this book by the end of the week. Need to decide what to read next, as this was the last book in my most recent batch of professional development books.

OWASP

I’d like to learn more about how ZAP works, since I’m using it as a substitute for Burp Suite. I’ve also started looking at Juice Shop, to run a CTF at work.