Certified Red Team Professional (CRTP) - How to PASS!?

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

today I'm going to show you how to become a certified red team professional and for that make sure you stick until the end of this video because I'm sharing my top five tips to pass this exam now if you haven't heard about the crtp let me tell you why this is an amazing certification to have the crtp is a completely Hands-On certification and in order to be certified you'll have to be able to compromise a fully patched active directory infrastructure containing multiple windows domains and forests another thing is you'll have the possibility to solve all the labs and challenges is either by using Standalone tools or by using a C2 which stands for command and control and last but not least altered security provides solutions for all the labs and challenges and that means that even if you get stuck after trying everything you know you can just use the lab manual or the video walkthroughs to get a stepbystep solution how cool is that and you know what else is cool two weeks ago with the help of altered security we agreed on giving away a certified red team professional certification voucher but if you're watching this it means that the giveaway has come to an end and yeah I know it's kind of bad news even if you participated and did it w but don't worry it looks like we are approaching 10K subscribers which is amazing and I have some things planned for the near future so make sure you subscribe so you don't miss out on that now back to the video when you decide to go for the crtp certification you have two options you can either go for the on demand course or you can go for the boot camp me personally I went for the boot cam but the only difference in my opinion is is that you get to assist to the classes live and you can ask questions to the instructor on Discord while he is explaining all the materials in terms of pricing it's $50 more expensive across all options if you compare it with the on demand course but if you like live classes I think you should go for it now let me tell you how I think you should prepare for the exam first I think you should go through all the course materials regardless if it's the live lessons or the OnDemand course this will help you realize if there's any aspect or concept that you don't quite understand now if that happens you can just rewatch that entire module or even ask questions questions to the instructor if you're participating in the boot camp and going through the live lessons or if you're using the ond demand courses you can just go to altered securi Discord Channel and ask your questions there now I don't recommend trying to solve the challenges and the labs while you're also watching the course lessons because I think that first you should try to understand why a certain thing works like that and how you can exploit it so then you can apply the theoretical knowledge you just learn into a practical approach by using the labs but this is just what works best for me okay I like to separate the theoretical learning from the Practical learning because I just like to use different techniques for both now while you're going through the study materials please remember to take notes you should be taking notes on things like what is the vulnerability and how does it work what can be achieved with this attack and how to perform the attack then what tools can be used and even if that tool doesn't work are there any alternatives then you should also note examples of the commands you're using and examples of success messages and error messages and in that case What can you you do to overcome those and trust me all of this will be tremendously helpful during the exam especially when it comes to saving time after that you should try the labs for the first time and it's pretty normal to get stuck and not knowing what to do at first so again if that happens and you've tried everything you know make sure you check the lab manual and the video walkthroughs that will give you a step-by-step solution in order for you to solve the challenges now in my opinion you should just check those to get little hints to check if your thought process is correct and if you're going in the right direction now if you're totally clueless and you're you don't know what you're doing by all means just check the solutions and try to follow it step by step and I'm sure you'll get through the challenges now after you complete the labs for the first time by using the lab manual and the video walkthroughs you should try to complete the labs for a second time without any help or hint whatsoever because this will test your understanding on the many different exploitation techniques tools and general active directory security concept and if you manage to do it I I think you're pretty much ready to tackle the exam now finally as promised let me give you five crucial tips if you want to clear this exam in your very first attempt tip number one is have everything ready prior to the exam and with this I mean tools notes scripts and everything you're planning on using during the exam because the student VM that you're going to get during the exam won't have any of the tools preloaded so keep that in mind tip number two is note and screenshot everything you do this one is very self-explanatory when I was done with my exam my brain was completely fried but I was very happy with myself for doing pretty much all the reporting while I was doing the exam so in the end it was just a matter of going through all of it and making it look pretty before submitting it to evaluation tip number three is create a graphical representation of your target during the course you realize that the instructor is using Microsoft Paint a lot and that's because it helps him to explain different and a little bit abstract Concepts in a more visual way and by doing that I real realized that it was easy for me to internalize things so as soon as I started my exam and was done with some basic initial enumeration I used Ms paint to draw my target active directory structure including forests domains servers users all of it and I actually kept on using that diagram throughout my exam taking every single asset and user as owned while I was compromising them tip number four is have a backup plan for everything this one is very simple and straightforward but let me give you an example if you're using a particular tool or script for a specific attack technique consider having a plan b or an alternative to execute it because you don't want to get stuck just because your main plan doesn't work and trust me this might save you on the exam and tip number five is don't forget to reset your target machines if you feel like something should be working and it's not it doesn't hurt anyone if you just stop take a second and reset whatever Target machine you're trying to compromise I mean Tech can be unpredictable sometimes right and if you've been trying different tools and different attacks there's a high chance that you might have created too many tickets or maybe you have overloaded this machine and so remember that by resetting your target you might get things to work as they should and avoid some unnecessary stress I hope this video will be useful for someone and if so please leave a like And subscribe and I'll see you in the next one bye

Info

Channel: David Alves Web

Views: 3,591

Rating: undefined out of 5

Keywords: Cybersecurity, Cyber Security, Cybersecurity Web, Cyber Security Web, Information Security, OSCP, CISSP, Security+, CompTIA, CySA+, CySA, Linux, Kali, Infosec, Certifications, Offensive Security, Ethical Hacking, Pentesting, Penetration Testing, Red Team, Red Teaming, DEFCON

Id: HL3rxgcz9X4

Channel Id: undefined

Length: 6min 23sec (383 seconds)

Published: Sun Oct 29 2023