Riya Jain
2 min readDec 5, 2023

--

Unveiling My Decision to Pursue the eJPT Certification

Introduction:

Penetration testing is an integral part of cybersecurity, so it’s no surprise that it’s a rapidly growing role, a faster-than-average growth rate. Organizations are in search of qualified, certified professionals to join their Red Teams, and you can be one of them with help from INE’s new Junior Penetration Tester (eJPT) certification. A Junior Penetration Tester is an entry-level role on a cybersecurity team that searches for vulnerabilities and attempts to exploit them as a preventative cybersecurity measure.

The Worthiness of eJPT:

Is it worth it? Undoubtedly. Having navigated various hacking platforms, undergone multiple non-paid certifications, and invested in paid penetration testing courses, I recognized the necessity to validate my knowledge for potential employers. The eJPT’s standout feature is its 100% practical exam, providing a platform to showcase hands-on penetration testing techniques and concepts. This certification serves as a tangible testament to one’s capabilities in a field where practical application reigns supreme.

Key Outcomes and Topics:

The eJPT delves into critical areas such as TCP/IP, IP routing, LAN protocols and devices, HTTP and web technologies, essential penetration testing processes, methodologies, vulnerability assessment, and exploitation with tools like Metasploit. The comprehensive course material encompasses Wireshark, Pivoting, Burpsuite, OSINT, Nmap, Nessus, and various web attack techniques, including XSS, SQL injection, and directory bruteforcing. The exam focuses on essential tools like OpenVPN, Nmap, Nessus, fping, Burp Suite, John the Ripper, Hashcat, and more.

Exam Environment and Tools:

The exam environment, conducted on OS platforms like Kali Linux or any Ubuntu-based system, emphasizes real-world scenarios. Essential tools for the eJPT exam include OpenVPN, Nmap, Nessus, fping, dirt buster, Burp Suite, John the Ripper, Hashcat, Metasploit, Hydra, Nmap automaton, Wireshark, sublist3r, Netcat, dirb, enum4linux, samrdump, and smbclient. This array of tools ensures a holistic evaluation of one’s penetration testing prowess.

Conclusion:

Choosing the eJPT has proven to be a pivotal decision in my pursuit of a career in penetration testing. The certification’s emphasis on practical skills, combined with a thorough exploration of essential topics and tools, has not only honed my abilities but also provided a tangible validation of my expertise. I am confident that it will be a transformative experience, solidifying my position in the cybersecurity landscape.

--

--

Riya Jain

Security Researcher | Penetration Tester | Red Team | Blue Team | eJPT|CAP | CND | Purple Team