FrankShorty 4 Report post Posted January 17, 2017 Hi! I finished PTP and MASPT (well, still waiting on the result but pretty sure I got it..) and am looking for a new course. I would like to do WBTx next. Can anyone tell me if WBT is recommended to do before the eXtreme version? Or can I just dive into the deep end? Note that I already am already working as a pentester and do a lot of webapp testing on a daily basis. I am pretty confident in my recon and analyses skills. Thanks -Frank Share this post Link to post
riccardoancarani94 25 Report post Posted January 17, 2017 I'm in the same situation! I think that WAPT is not necessary but strongly recommended. BUT this referred to my case, if you are pretty confident with web app pentesting in a professional way, you should be fine with WAPTx. I'll take my time and do the full jurney, good luck! Share this post Link to post
FrankShorty 4 Report post Posted January 17, 2017 Yeah, maybe I will just do the exam for WAPT and do the full course for WAPTX.. Depending on what the boss will pay for Good luck to you too! -Frank Share this post Link to post
FrankShorty 4 Report post Posted January 26, 2017 I took the WAPT exam btw! It was pretty gosh-darn though xD I managed to complete it 5 minutes before the deadline though.. Share this post Link to post
riccardoancarani94 25 Report post Posted January 26, 2017 So, if you are a professional pentester and you found that the WAPT exam was not easy, do you think that the exam is relevant to modern day web application pentesting? Sorry if the question is quite confusing, I never did pentesting professionally and it would be awesome to know how much WAPT can help Share this post Link to post
FrankShorty 4 Report post Posted January 26, 2017 Well yeah to a certain degree. It is very rare that I find applications that are so broken that they allow me to do what the exam is asking me to do. The vulnerabilities in the exam certainly arise on a day to day basis. In fact, I was testing an application during the exam time and found one of the key vulnerabilities of passing the exam in that application as well . I just made a very stupid mistake that lost me a lot of time because I was working with bad information. I was very frustrated with myself Also.. in the exam you are looking for the hole you know has to be there. In real life you run structured tests and look for hints of possible holes. You are under a much bigger time restraint and have another 3 tests lined up with project managers bugging you to deliver quickly. No time to really spend 8 hours straight on that one tiny little thing that may or may not be a hole. The mindset is slightly different, I think. 2 Share this post Link to post
riccardoancarani94 25 Report post Posted January 26, 2017 Good to know! As in the other exams scenario, doing that lot of damages in real world is quite rare but the fact that those vulnerability are still common makes me feel good! (yeah, maybe it's quite weired) Can't wait to start the course, thanks for the info! Share this post Link to post
korolenko.sergiy 0 Report post Posted April 25, 2017 So, is WAPTX includes full WAPT? a pert of WAPT? I can took only one of them and want a suggestion. Share this post Link to post
Vincent 198 Report post Posted April 25, 2017 No, the WAPTx is Web App pentesting at an extreme level. The WAPT or the same level knowledge is necessary in order to pass WAPTx. the material covered in WAPTX is NOT covered in WAPT. My suggestion: If you are not an experienced WAPT than Do not attempt WAPTx. Share this post Link to post
djoun 8 Report post Posted July 1, 2018 is MAPT without the lab ? if yes then any plan when its updated to v3 or promo ? since i think the current price is high Share this post Link to post
tuba 8 Report post Posted July 1, 2018 @djoun All the courses are inclusive labs. I don't think the price for MASPT is high because it is for Android AND iOS, you have a lot of background information which you definitely need and you have labs and support from the instructors. By the way: you could choose the installment plan. Share this post Link to post
djoun 8 Report post Posted July 1, 2018 i mean lab is hera lab like another course. Share this post Link to post
tuba 8 Report post Posted July 1, 2018 @djoun Nope, there are apps which you can use to practice. Share this post Link to post
dimitrios 537 Report post Posted July 1, 2018 @djoun +1 to what @tuba said. The labs included are the following: https://www.elearnsecurity.com/course/mobile_application_security_and_penetration_testing/ Each one of them is accompanied by comprehensive and step-by-step lab manuals, just like all eLS courses. 1 Share this post Link to post
Milind 0 Report post Posted July 14, 2018 Hello, can anyone please provide the invite link /code for PTS. When i try to purchase it, it says its free via invite only till 31st July 2018. Thanks in advance. Share this post Link to post