eJPTv2 Exam Unwrapped: What to Expect and How to Excel
Greetings fellow Readers !! While my previous blog posts have revolved around learning new techniques to exploit common Active Directory Misconfigurations , this latest installment takes a distinctive turn.
As I am trying to become a cybersecurity professional, I understand the value of certifications as milestones in our career paths. They’re the badges of honor that showcase our skills and knowledge to the world.
In this blog post, I will be reviewing an entry-level certification which will get your feet wet in the realm of penetration testing.
Introduction
The eJPT certification, short for eLearnSecurity Junior Penetration Tester exam, verifies an individual’s competence and capabilities required to assume the role of an entry-level penetration tester.
This certification encompasses fundamental penetration testing knowledge and principles, encompassing Evaluation Techniques and Corporate Auditing, which includes Host, Network, and Web Application Penetration Testing.
The eJPT serves as an initial milestone for individuals who may have limited or no prior experience in the field of cybersecurity.
It was a dynamic exam, which meant I had to conduct a thorough penetration test on the provided network environment during the test. The exam consisted of 35 questions, some of which were multiple-choice (MCQ) based, while others required submitting the “flag” you captured throughout your pentesting engagement.
I purchased this certification in July 2023, and it cost me approximately $149 (12,908 INR). The original price was $249, but I took advantage of INE’s promotion, which provided a $100 discount on any eLearnSecurity (eLS) certification.
Along with the exam voucher, I received a three-month access pass to the Penetration Testing Student Path, which serves as the course material for this certification.
The course material was about 145 hours in total, comprising 12 courses, hands-on labs, and quizzes to validate your skills and learning.
This certification expires and all passing score credentials will be valid for three years from the date they were awarded. The renewal process of this cert can be found here.
My Journey to eJPTv2 : From zero to certified
I began my exam preparation journey on July 20, 2023, shortly after graduating from college. Dedication was key, and I committed 7 to 8 hours per day to study the course material. My prior experience with TryHackMe and TCM Security’s Practical Ethical Hacking course proved helpful.
The course content was exceptional, enriched by hands-on labs that reinforced my learning. However, I encountered some issues during my learning journey. One notable concern was that out of the 145 hours of content, only approximately 9 hours and 5 minutes were allocated to Web Application Penetration Testing, which accounts for just 6.2% of the total course.
Considering the significance of web application penetration testing for beginners entering the field of penetration testing, I believe that adding more content to this section of the learning path would be highly beneficial.
Another challenge I encountered was occasional lab instability and slow performance. However, this wasn’t a persistent issue, so it was manageable.
Apart from that, the course material was excellent, with Alexis Ahmed and Josh Mason delivering comprehensive instruction. While I sometimes found some of Josh Mason’s techniques a bit challenging to grasp, I understand that learning styles vary.
After completing the course, I took the time to revisit and reinforce specific topics, practicing with the labs. Some suggest doing TryHackMe machines for exam preparation, but personally, I found the Learning Path to be comprehensive. It covers everything you need to pass the exam. However, if you’d like additional practice and confidence, solving rooms like BLUE, BLASTER, and ICE on TryHackMe can be helpful.
After intensive study sessions and a significant amount of coffee, I felt well-prepared for the exam.
Exam Time
On August 14, 2023, I began my exam at 7:30 PM IST. As my first cybersecurity certification, I was understandably nervous. However, as I got into the exam, I began to feel more comfortable and even started enjoying it.
I completed the exam in 11 hours, although I realized I could have finished it much sooner if I hadn’t overthought certain aspects.
After submitting my answers, I anxiously awaited the results.
Fortunately, the outcome was in my favor — I passed! I achieved an impressive score of 94%, marking my first-ever cybersecurity certification. I couldn’t have been happier with the result.
Cracking the Exam (Without Breaking a Sweat)
The path to obtaining the eJPT certification was a rich learning experience. While it was enjoyable, I’d like to share some valuable tips to assist you in acing this exam.
- Don’t Overthink It: Trust in the course material. Everything you need to succeed is covered in the curriculum.
- Make Detailed Notes: Creating thorough notes can make it easier to grasp commands and techniques, enhancing your understanding of the material. Consider using note-taking systems like Notion, Cherry Tree, or Obsidian for efficient and structured documentation.
- Revisit Key Topics: If you find that a particular topic isn’t clear, don’t hesitate to revisit the course videos and labs to strengthen your understanding.
- Leverage Your Toolkit: Always make use of the tools you’ve been taught; tools like Metasploit and Nmap are your trusty allies.
- Enumerate Vigilantly: Prioritize enumeration and gather as much information as possible. Remember, understanding the battlefield is crucial before engaging in the battle.
- Have Fun: Above all, remember to enjoy the process. Your primary objective is to learn, not just to obtain that shiny certification. Embrace the journey!
Final Thoughts
In conclusion, the eJPT certification is a valuable stepping stone for individuals interested in cybersecurity and penetration testing. It equips you with practical skills and knowledge that can be applied in both exam settings and real-world cybersecurity challenges.
However, like any certification, it’s essential to supplement it with ongoing learning and practical experience to excel in the field.
Feel free to reach out to me if you any questions without hesitation on my social media accounts
If you’ve found value in this blog post, expressing your support with a “clap” would be greatly appreciated.
Additionally, if you’re keen on furthering your cybersecurity knowledge, consider following me for more insights and learning opportunities.
