If you are wondering what happened since last post well, we'd need a full book to describe.
Nothing bad, all awesome things. Things got hectic and projects and opportunities for us endless.
This won't forgive us for not being present on the blog but you know this is start-up life in a tough world like Information Security.
So we decided to share some numbers with you one year after our debut as a training provider for penetration testing matters. Also please allow us to use magnitude orders and not actual numbers.
This won't be your Information Gathering page, sorry competitors.
In the past 12 months we have had more than 1,000 students from 75 different countries worldwide.
Thanks to the different courses proposed (Beginner course and Professional course) we were able to address different needs at different prices.
Distinguishing ourselves from the other provider was one of my personal main goals when starting this project. Making quality training affordable was our mantra.
That's why our Money back guarantee program and our 3 installments payment model won the trust of hundreds of students who either didn't trust us in the beginning or just didn't know if Penetration testing was the career that they wanted.
Making the entrypoint to this industry more affordable and less stressful is why you love us and why we are here for many years ahead.
Coliseum Lab
How not to mention our revolutionary web application security lab.
This took us months and months of coding by our engineers (we are a company of computer engineers with a passion for Info Sec). This has now become a great place where to learn web app security through real world goal-based scenarios.
Ok why it's revolutionary. First it's the first multi-platform web app security lab. So you can learn on different stacks and different OS's. Second, it's revolutionary on how it allows teachers (and soon the community) to upload and generate new challenges on-the-fly for other students/researchers to enjoy.
On top of our Coliseum Lab framework, we have created a pakage of battles (real world vulnerable websites) that we called (proving our great ability in picking names) Web Application Security 360 (WAS360). WAS360 teaches web app security through 100% hands on training, in the cloud.
Now don't ever think this is a hacme bank or a "hey this is a form with a XSS, hack it".
We made it so you can ask for help when you need it and receive useful educational contents (text images and videos) on how to move forward.
All of the "battles" that you find in it are real world vulnerable websites.
Coliseum Lab as you know it now is only the beginning and more awesome features will be announced in the coming months with a possibility to use it for FREE !
To wrap up, expect more posts here on the blog sharing our new projects progress and more information about our upcoming events and contests.
Stay tuned!
Hello,
We have got new 9 minutes of pwnage for you to enjoy in our Youtube channel
This is the scenario we used:
See you in the next few days for a few big announcement.
Hello everyone, new week, new video.
Here you can see the difference between using staged and non staged shellcodes from a functional point of view and under the perspective of a pentester who wants to evade AV's. Then we dive into msfencode and its usage to bypass AV's.
Stay tuned for more free pentesting videos from eLearnSecurity!
There's a new video in our Youtube channel.
We are keeping up with our promise to deliver one free pentesting video every week.
So if you have not subscribed yet:
The new video will deal with Msfpayload, a handy utility shipped with Metasploit that lets you use shellcodes (payloads) and builds stand alone executables around them.
This video is split in two parts. In this first part, basic usage of msfpayload will be shown.
A meterpreter payload is used and which listener to use for each shellcode is discussed.
A meterpreter payload is used and which listener to use for each shellcode is discussed.
There are time when you would like to use netcat, and times when you cannot use it (e.g. you have selected a multi staged payload) and you have to initiate a multi handler listener through Metasploit.
The process is well explained so it shouldn't be hard to follow through.
Next video will demonstrate the impact of the msfencode utility on Antiviruses in order to make your payloads less likely to be caught by your client defense tools.
Bye!
What's new today? We have just opened our Youtube channel! And the best part is that we will host video tutorials and live hacking examples done by our students, for our students.
This initiative allows our instructors to keep students committed, focused and always learning.
In the beginning, our goal is to publish a video every week. With time we aim at involving more and more of our students and build a library of FREE quality video lessons online.
Our first video on sniffing and cracking in a simple scenario with Cain & Able is available here:
We hope you like it and that can send us your feedback or suggestions for new topics/tools to cover in our future lessons. Enjoy
We've heard your suggestions, we've applied a number of bug fixes and improvements to our first version of the Penetration testing course Professional and released another updated version of our course:
v1.1
It is amazing to see how many people are willing to employ much of their spare time noting down bugs and improvements. This students' work and my colleagues work has been precious.
Beside the bug fix saga we have also included another much requested module to our course: Social Engineering Attacks
Brett Arion, our Network Security section author, has done a great job in summing up this vast and important topic into a module and making a super 30 minutes introductory video on SET.
SET is something we will dive into with further releases as we believe it has changed the way pentests are carried out nowadays.
BTW, if you are one of our students, you will get the update FOR FREE
Just login in our Members area and start studying the new module
If you are wondering what else we are up to, you might be amazed to know.
We working towards improving our labs, making our course easier to study and absolutely new course releases.
Stay tuned!
In eLearnSecurity everyone is passionate about security. From the gatekeeper to the managers.
We always try to involve friends and other passionate practitioners to join our projects and when we can't, we just support their projects wholeheartedly.
Manu Zacharia newly winner of the prestigious ISC2 Asia Pacific Information Security Leadership Achievements Award, organizer of the c0c0n conference 2010, is a good friend of eLearnSecurity and has picked our courses as the exclusive Prize sponsor for the Catch the Flag contest.
We are not just proud, but really happy to award our Penetration testing course - Pro to the winners of the contests!
The c0c0n conference, getting more and more importance among the industry conferences, will take place in Cochi India, from August 5th-6th.
Top level speakers and contests will animate the 2 days conference.
If you are in the area, we strongly advise you to attend!
Subscribe to:
Posts (Atom)
