Hello ITPRO Team,
I would like to know the difference between ethical hacker and pentester. also which certification should i get to become a good security guy. and is the CampTIA linux+ required for the security Carrier or not?
Thanks in advance.
-
Ethical hacking or Penetration Testing.
-
Great question @Rochdi-KADDOUSSI here is a great article touching on the differences.
From the EC-Council
Penetration testing is aimed at finding vulnerabilities, malicious content, flaws, and risks. This is done to strengthen the organization’s security system to defend the IT infrastructure. Penetration testing is an official procedure that can be deemed helpful and not a harmful attempt.
An ethical hacker role appears to be like that of penetration tester, but it encompasses diversified responsibilities. It is an all-embracing term that includes all hacking methodologies along with other related cyberattack methods. Ethical hacking is aimed to identify vulnerabilities and fix them before the hackers exploit them to execute a cyberattack.
https://blog.eccouncil.org/what-is-penetration-testing-how-does-it-differ-from-ethical-hacking/
Best Regards,
Wes BryanKnowledge is a road to be traveled upon, not a destination to be reached~~
-
Hello @wes-bryan,
I appreciate your reply and explanation, but could you please confirm should i start first with Linux+ certificat and what you advise as a strong security certification ?
Thanks and regards,
Rochdi -
You need the basics and experience to get a job. Try Hack Me was recommended on this site on a webinar. I signed up. Made a Kali server and have been on it for 85 days. I try to do 2-3 rooms a week. You get real on hands experience and when you complete a room, it loads to Linkedin.
-
Thanks @Michael-McKenney, im a system administrator already and just want to get the correct the learning path for security. What's recommended for new linux user to earn. and whats the best certifications to become a security master.
-
I use my Kali Server to test my Linux box security at home. Don't do it on your work network unless you want an RGE, Resume Generating Event.
I ran WP-SCAN, NESSUS, and other stuff against my house. I run a corporate data center. I started on the Cisco Router with ACL and CoPP. Fortinet firewall doing UTM for DDOS and other attacks, etc.
-
Great informations thanks @Michael-McKenney
