# eJPTv2-Notes

<figure><img src="https://4125752566-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FPNcjhcAuvH4mlZKYrNu3%2Fuploads%2FAHoFrn7IgmprJ9QW2fvz%2Fimage.png?alt=media&#x26;token=789123b0-c7c5-41b0-b4e7-51ecac552ccb" alt="" width="563"><figcaption><p>eJPT - © eLearnSecurity | INE</p></figcaption></figure>

## Course duration & Topics ⏳📚 <a href="#course-duration-and-topics" id="course-duration-and-topics"></a>

\~ 145 hours (*`~56h of videos`*)Activities: **4** sections , **12** courses , **229** videos, **154** quizzes, **120** labs

* ​[**Assessment Methodologies & Auditing**](https://dev-angelist.gitbook.io/ine-elearning-ejptv2-notes/readme/assessment-methodologies-and-auditing) \~ 27 hours (`11h` of videos)
* [​**Host & Network Penetration Testing** ](https://dev-angelist.gitbook.io/ine-elearning-ejptv2-notes/readme/host-and-network-penetration-testing)\~ 108 hours (`42h` of videos)
* [​**Web Application Penetration Testing** ](https://dev-angelist.gitbook.io/ine-elearning-ejptv2-notes/readme/web-application-penetration-testing)\~ 10 hours (`3h` of videos)

## E-Links 🔗📔 <a href="#useful-links" id="useful-links"></a>

* Where to find the PTSv2 (Penetration Testing Student v2) course? - [INE Learning Paths](https://my.ine.com/learning-paths)​
* Where to find the eJPT certification exam? - [eJPT](https://ine.com/learning/certifications/internal/elearnsecurity-junior-penetration-tester-cert)​

## ​[eJPT](https://ine.com/learning/certifications/internal/elearnsecurity-junior-penetration-tester-cert) Exam 📄🖊️ <a href="#ejpt-exam" id="ejpt-exam"></a>

* Time limit: 2 days (**48 hours** lab on)
* Questions: **35**
* Expiration date: yes (3 years)
* Objectives:
  * **Assessment Methodologies Domain (25% of exam):**
    * Evaluate information and criticality or impact of vulnerabilities
    * Identify open ports and services on a target
    * *Exam Score to pass*: at least **`90%`**
  * **Host and Network Auditing Domain (25% of exam):**
    * Gather hash/password information from target
    * Enumerate network information from files on target
    * *Exam Score to pass*: at least **`80%`**
  * **Host and Network Pen Testing Domain (35% of exam):**
    * Conduct brute-force password attacks
    * Conduct exploitation with Metasploit
    * *Exam Score to pass*: at least **`70%`**
  * **Web Application Pen Testing Domain (15% of exam):**
    * Exploit web app vulnerabilities
    * Locate hidden files and directories
    * *Exam Score to pass*: at least **`60%`**
* *Overall Exam score*: **at least `70%` + above minimum score requirements in each domain section**
* From a **technical perspective** the exam is set out to simulate a black box penetration test
  * minimal amount of information about the target network
  * in browser labs (no vpn)
  * a complete unrestricted access to the lab environment for the entire duration of the exam
  * letter of engagement
* Flexible structure for the user
* Hands-on, open book
* **Dynamic flags**: randomly generated flags injected into the lab environment
* Testing your ability to **find the answer**. How you do it is up to you.

## Resources 📑📘

### 👉 [Preparation RoadMap to pass eJPT exam](https://dev-angelist.gitbook.io/ine-elearning-ejptv2-notes/readme-1) 🛣️

### 👉 [eJPT Cheat Sheet](https://dev-angelist.gitbook.io/ine-elearning-ejptv2-notes/ejpt-cheat-sheet) 📔

🙏🏻 *Thanks to Alex for allowing me the opportunity to fork* [*his notes.*](https://blog.syselement.com/ine/courses/ejpt)🙏🏻

> 📖 Read the [Letter Of Engagement](https://media.graphassets.com/RdsCvab8SvacedNV5k4V)​📖 Read the [Lab Guidelines](https://media.graphassets.com/26hoOMeZQDyu7QJQlvaJ)