Hey thanks for the tips! I have a question. I have heard you have to collect 75 points in order to pass.
How many machines do you have access to try and exploit for the test?
Do you select what you will attack from a given network or you are assigned specific ones? How many machines you actually have to exploit in order to pass?
Thanks
Exactly like what @Boomstick said, you have to at least own 4 out of 5 to pass the test, idk if you own 3 (root) and 2 (local) will suffice though.
Thanks for the answers! A few more now haha
All of the target are Windows?
What OS are most likely to use?
Are they correlated in order to solve them all?
Machines are more CTF or real life?
Common CVE or manual exploitation?
Thanks for the answers! A few more now haha
All of the target are Windows?
What OS are most likely to use?
Are they correlated in order to solve them all?
Machines are more CTF or real life?
Common CVE or manual exploitation?
Nope
It’s 50/50 chance on the OS of each server
Nope, each server is a standalone. At least that was my experience.
I would say more like real-life. There isn’t any steganography or some bizarre cryptographic message you have to decode.
Thanks for the answers! A few more now haha
All of the target are Windows?
What OS are most likely to use?
Are they correlated in order to solve them all?
Machines are more CTF or real life?
Common CVE or manual exploitation?
No, each exam rotation is different they’re a mix between windows and linux.
They are not correlated, each machine has its own way in.
Hey, How much points they deduct if someone has submitted local.txt and proof.txt in control panel and also in the exam report, but forgot to add ifconfig command? do they deduct complete 20 points or do they just deduct 5,5 for each ( mean for local and proof)?
To what extent do we need to use programming skills here to modify exploits ? Do you recommend we take Python courses or Python for hacking sort of courses ? And what languages should we know
Also, is it true that the exploits are pretty obvious and it’s just a matter of using them correctly or modifying them if need be? This is putting aside falling into rabbit holes
Quick question someone might know the answer to. In the new exam can you still you a laptop for the webcam and then run the screen capture software on your exam machine?
I’m concerned about running it all on my exam machine abs having it crash.
Quick question someone might know the answer to. In the new exam can you still you a laptop for the webcam and then run the screen capture software on your exam machine?
I’m concerned about running it all on my exam machine abs having it crash.
I used my laptop for the webcam feed and my pc to do the exam. Yeah you can do it.
Yea this is where my confusion came from. I know it says it now in the new rues but I think I’ll mail them to seek clarification. I’d prefer to just have the live feed on my laptop and do the exam on kali VM running on my PC.
Either way I’ll prepare to have it working both ways just in case.