So my boss has tasked me with starting up a penetration testing division for the business so we can offer it as a service to our clients and he told me take as much time as it takes for me to learn pentesting and get good at it. I am going through the CEH course right now, but is there a general workflow that you pentesters use when approaching each test. Like I know each test is dependent on the customers need, but is there a general approach you take?
This is where CEH will begin to help especially with learning the hacking process but you'll need to better yourself at all aspect of Offensive Security, Risk Management, Networking Infrastructure, Social Engineering.
To begin you may want to check out Penetration Testing with Daniel Lowrie and Mike Rodrick.
We hope to add more in our course library for Practical IT Security Skills in the future that should help too.
Ok Thanks Ronnie. Are there any resources that i should be looking at besides the IT pro website that will further my knowledge and help me train better for this career? Any specific resources you would suggest whether they be free or whether i have to purchase them
The links I've posted below range from free to a pretty good chunk of money. This will get you started.
for Learning about it (beginner)
for recognized certification training
for a performance-based certification training