Greetings, r/hacking! I'm learning Ethical Hacking primarily through TryHackMe, but also with sampling from aTCM course.
Right now, I'm working through THM's Jr. Penetration Tester path, and the web hacking section feels too easy to me. I understand that the purpose of the module is to show you common ways that insecure websites can be taken advantage of, and how this can be done, but it feels.. too easy?
So, I want to ask the following question: To anyone who has tested many website's vulnerabilities, does the average difficulty tend to be greater than what you might have expected while you were learning the ropes? Are the training websites difficult to hack whatsoever compared to the real deal?
And to anyone who has spent a lot of time with THM practice, when do you think it's a good time to start applying your skills? You learn a good bit with the pre-security and intro csec paths, but you don't really learn to use any tools well, so by the time you're working through Jr. Penetration Testing, it feels like you're not really achieving anything.
[link] [comments]
from hacking: security in practice https://ift.tt/btxeBkI
Comments
Post a Comment