This is a study plan for the official materials and content from INE for the Penetration Testing Student (PTS) course materials.
The materials are divided into courses. Each course contain videos and labs. Some video have labs along with them, and others do not.
I gave each video that has no lab 2x its time to watch and the video and write notes about it. If the video has a lab you should spend 3x its time for watching it, applying the lab, and writing your notes.
You can either watch the complete first and then apply the lab, or apply the lab while you watch the video (follow instructions and apply then step-by-step). Personally, I found the second one is better for me as it took less time compared to the first one.
The goal is to spend around 2-3 hours each day studying the course materials. Note that this study plan does not consider time for revision or practicing what you have learned through CTFs. You can manage this on your own on the pace that suits you.
This repository contains a list of good THM rooms to do for the eJPT exam. Thanks to N1NJ10!
A note here, you do not have to do all CTFs before the exam. Personally, I did not do any CTF before the exam - except the black-box machines that were provided during the course, and I managed to pass the exam.
However, I recommend you doing some machines before the exam as this will make the exam more easy for you to pass. Inshallah I will write about my exam experience soon and I will leave a reference for it here!
Besides, I noticed that the course content was added to it. When I took the certification two months ago from the dates I am writing the repo in, the content length was 148h. Now, it is more than 156h. So, this plan is according to the length 156h 17m according to the official site.
- Introduction - 6m18s (15min)
- Introduction To Information Gathering - 9m22s (20min)
- Website Recon & Footprinting - 20m55s (40min)
- Whois Enumeration - 7m56s (15min)
- Website Footprinting With Netcraft - 10m47s (20min)
- DNS Recon - 13m34s (30min)
- WAF With wafw00f - 7m31s (15min)
- Subdomain Enumeration With Sublist3r - 11m36s (20min)
- Google Dorks - 22m51s (45min)
- Email Harvesting With theHarvester - 13m (25min)
- Leaked Password Databases - 8m (15min)
End of Passive Information Gathering section.
- DNS Zone Transfers - 28m15s (1h)
- Host Discovery With Nmap - 7m2s (15min)
- Port Scanning With Nmap - 26m17s (1h15min)
- Course Conclusion - 1m13s
End of Course 1!
Obviously, this course was updated (so the content went from 148h to 156h). I remember it was around 5h long. now it is around 11h. They added some good stuff.
- Course Introduction - 12m17s (15min)
- Active Information Gathering - 7m18s (15min)
- Networking Fundamentals - 15m38s (30min)
- Network Layer - 31m42s (1h)
- Transport Layer - Part 1 - 21m48s (40min)
- Transport Layer - Part 2 - 15m56s (30min)
- Netowrk Mapping - 13m3s (30min)
- Host Discovery Techniques - 10m5s (20min)
- Ping Sweeps - 23m28s (50min)
- Host Discovery With Nmap - Part 1 - 23m29s (50min)
- Host Discovery With Nmap - Part 2 - 27m30s (1h)
- Port Scanning With Nmap - Part 1 - 17m32s (40min)
- Port Scanning With Nmap - Part 2 - 19m28s (40min)
- Service Version & OS Detection - 16m18s (30min)
- Nmap Scripting Engine (NSE) - 32m24s (1h30min)
- Firewall Detection & IDS Evasion - 26m22s (1h)
- Optimizing Nmap Scans - 20m24s (40min)
- Nmap Output Formats - 22m6s (1h)
- Course Conclusion - 9m17s
- Windows Recon: Zenmap - 15min
- Scan the Server 2 - 15min
- Scan the Server 3 - 15min