Being a final-year BCA student, I have spent a lot of time studying cybersecurity and working on improving the safety of systems. I find this field both challenging and fulfilling. My long-term goal is to earn a recognized certification in cybersecurity to further my expertise. One of the toughest challenges I’ve encountered is dealing with applications that have strong security measures, such as strict traffic limits and advanced monitoring tools. By staying persistent and using innovative approaches, I’ve managed to identify areas for improvement in system configurations and application handling, which led to the discovery of an important security-related issue. Due to confidentiality requirements, I can’t share further details, but I truly appreciate the support and guidance that help me continue advancing.
I am in the final year of my BCA with ethical hacking. I exploited a caching issue by injecting malicious JavaScript into a vulnerable parameter. The poisoned response was cached, leading to widespread XSS, enabling cookie theft and user redirection. Nowadays, finding a job is very challenging. I work as a freelancer whenever I have time, but when I apply to MNCs, they often ask for certifications. A giveaway or affordable option for certifications would really help me.
As a third-semester BCA student, I've been fascinated by ethical hacking for over a year. One of my biggest challenges was securing a Raspberry Pi web server. I struggled with implementing robust HTTPS, IP filtering, and file permissions. This experience highlighted the importance of meticulous security practices. To overcome this, I delved into OpenSSL for certificate generation and NGINX configuration. I also leveraged Kali Linux for penetration testing and Wireshark for network analysis. While the project wasn't fully realized, it ignited my passion for security and the need for continuous learning. I'm eager to take my skills to the next level with the OSCP certification. It aligns perfectly with my goal of becoming a skilled penetration tester. The challenges and practical experience offered by the OSCP will undoubtedly solidify my foundation and prepare me for real-world security scenarios.
I work in cyber security and have a background in forensics. A challenge I overcame was interviewing people for a cyber security role. Sometimes, people are extremely nervous and as the interviewer, I need to bring the best out of them to help give them their best shot. I will often talk to them about their background, hobbies, start off with soft skills and ease them into the interview before I ask the more difficult questions. This gentle beginning of the interview has helped people feel more comfortable and I've had several interviewees comment on how grateful they were for this approach.
I am really passionate about cybersecurity as a career. Although I currently have a developer job, I continue to hack machines on different platforms in my free time to sharpen my skills. I have already completed my CompTIA Security+ and eJPT certifications, and now I'm eager to delve deeper into penetration testing with the OSCP exam. One major technical issue I solved at my workplace involved creating a cybersecurity solution that not only addressed our security concerns but also implemented effective cost-cutting strategies. Additionally, I've participated and dedicated hours in countless CTFs and one of my recent projects involved developing a machine learning model to identify phishing websites The OSCP exam would be a great next step in my journey to becoming a more skilled and knowledgeable cybersecurity professional. Also, a major cinephile and as Elliot once said "Hello Friend. This Only Works If You Let Go, Too."
Hello Farah, This video was awesome! I really appreciated how you explained the importance of the OSCP in today's industry. Thank you for hosting this giveaway; it's incredibly generous of you! I’m currently working as a Web Application Security Specialist and looking to expand my skillset with the OSCP to transition into a more penetration testing-focused role. One technical challenge I recently faced was testing an application’s file upload capabilities. I uploaded a PHP file with a payload designed to print out user details, but despite the payload being correct, some validation prevented it from working. To bypass both client-side and backend validation, I tried various techniques, including using different file extensions, altering Content-Type headers, injecting characters like %00, and even removing front-end validation functions. What finally worked was changing the file's initial bytes, or Magic Bytes, to manipulate the file signature, allowing me to bypass the checks successfully. Thanks again for the great content and this opportunity. Keep up the amazing work!
I'm student of Master of Science in Cyber Security and currently doing internship in Pemetration testing. During my penetration test i have found critical bugs. My Toughest technical challenge was recovering from kali linux crash and i have solved it with the help of booted pendrive to get data backup and reading linux documents and other articles.
Hi Farah, I love your content! Like you, I also come from a non-tech degree background, but I've been working as a software developer for 5 years and practicing bug bounty hunting and penetration testing for the past 2 years. I believe I’ve developed strong skills in this area. I aspire to transition fully into penetration testing and gain more profound knowledge. I’ve been researching certifications, and OSCP seems like a perfect fit for my goals. Hearing about your journey motivates me to keep pushing forward in mine!
hi farah, i am cybersecurity professional at KPMG. One of the challenges I faced recently was learning AD and I overcame it through self pace learning using various materials available on internet and then practising the same on open source labs and HTB boxes
I have a bachelors in cybersecurity and masters in cybersecurity management. I work as an SDM but looking to switch to security engineering. As far as a technical challenge, there have been many, but one example was as a security engineer on a blue team we were mitigating a sustained (48 hr) DDOS attack which was constantly shifting as to vector, spoofed IP range, signatures, etc. We could block once we spotted the new pattern, but rapid shifting meant server impact and load was how we saw the shift. To get ahead of this I wrote some bash scripts to constantly centralize and monitor logs, looking for specific patterns then dynamically adjust firewall rules along with some quick and dirty reporting to keep an eye on what it was doing. Solved about 85% of shifting attack traffic.
Hello Farah, I work in cyber security as an Penetration Tester. One of the biggest challenges I’ve faced is the constant need to balance learning and applying new techniques in web security testing. Bug bounty hunting has been instrumental in improving my skills, as it allows me to explore real-world applications, encounter unique scenarios, and adapt to different environments. For example, identifying misconfigurations or logic flaws across platforms has taught me a lot about creative thinking. I overcame this challenge by allocating time for hands-on practice, learning from write-ups. This has significantly improved my ability to find and exploit vulnerabilities, which has, in turn, enhanced my penetration testing work. However, as I advance in my career, I realize the importance of certifications like OSCP for professional growth. A certification would validate my practical experience and give my career the boost it needs.
Hello farah, i am a recent graduate. Last week i got my CCNA certification. The oscp has been on my mind for a long time but its difficulty level has always dettered me from persuing it but after my recent success with the ccna i have gained confidence that i can do the oscp as well. Although the two are very different the knowledge gained and the habits i made while preparing will definitely help me. A recent technical issue that i faced was using a 5g phone as home internet for a house. The diifculty was that i had to keep the phone charged at all times and use usb tethring to a router. But when every there was a power xut which happens 3 to 4 times daily on would have to manually turn the usb ethernet tethring option in the mobile setting so i used a script to automate it so that it automatically turned the feature on without manual intervention
The ccna was also very hands on. I had to do a lot of configurations related to networking ip routes, security fetures like ALCs, and security was a separate section in the exam
Hey Farah, Thank you for the insightful briefing on the OSCP exam. I hope you're doing well. I've been following your channel since the beginning of my cybersecurity journey, and your videos have been instrumental in building my foundational knowledge. Over the past two years, I've been working in the cybersecurity field, focusing primarily on penetration testing for applications. However, I feel like there are gaps in my learning that could be bridged with a more structured approach, along with valuable certifications to enhance my credentials in this field. The OSCP would be a game-changer for me, but unfortunately, it’s beyond my financial reach. Winning an OSCP from you would provide a tremendous boost to my career and help me further my growth in the industry.
HI Farah, your videos are an absolute goldmine for aspiring cybersecurity professionals like me! The way you break down complex concepts makes the daunting journey to certifications like OSCP feel achievable. I've been working hard to transition into penetration testing, and winning this OSCP giveaway would be a dream come true. It’s not just about the cert-it’s about the opportunity to learn, grow, and hopefully inspire others, just as you’ve inspired me. Thank you for creating such impactful content and for giving back to the community with opportunities like this..
Hi Farah I love your content you always share I am student right doing master's in cyber security I faced challenges cyber security or in my real life is my confidence and fear of people so that think I know from my beginning so I decided to join community and I got some cyber security community.now doing volunteering the hackers meet-up from last 1.5 year and that think increase my confidence, communication skills and made me better person and increase my problem solving skills
Hello, I am Manish Neupane, a BCA student currently in my 7th semester from Nepal. As part of my 8th semester, I need to complete an internship, but most companies require an OSCP certification. Achieving this certification would greatly help me secure a position and advance in my cybersecurity career. One technical challenge I faced was during a CTF competition. I was tasked with exploiting a vulnerable web application, but the usual tools didn’t work. After analyzing the application’s behavior, I discovered a unique SQL injection vector. I crafted a custom payload, successfully exploited the vulnerability, and captured the flag. This experience boosted my confidence and problem-solving skills. Thank you for this opportunity!
Hi, am Santhosh As someone with a non-IT background, my journey into cybersecurity began through bug hunting. One of my technical challenge was identifying a rate-limiting vulnerability in a web application. Initially, I didn’t fully grasp the concept of rate limiting and its security implications.But I researched rate-limiting mechanisms and discovered a flaw where large volumes of requests were not being properly handled. I submitted a detailed report, which led to a successful bug bounty of $10 and a $25 gift card. Although I feel I’ve felt that I am in same spot in my bug-hunting journey. I’m eager to delve deeper into penetration testing and offensive security. I believe that this OSCP course giveaway will encourage me to upskill myself. Thank you.
Hi, my name’s Ethan, and I work in cybersecurity as a penetration tester. In my experience, one of the most challenging aspects of this field-apart from the struggle of landing that first job as a junior-is the continuous learning. Cybersecurity is constantly evolving, with new threats, technologies, and methodologies emerging almost daily. Staying updated means dedicating time and effort to learning new skills, mastering tools, and understanding ever-changing attack vectors. It can feel overwhelming, especially when juggling work responsibilities and personal growth. But it’s also what makes the field so rewarding. Every challenge you overcome makes you stronger and more prepared for what’s next.
Background: I have a strong foundation in computer science, with expertise in programming, data structures, algorithms, and database management. I've gained practical experience through projects and open-source contributions. Technical Challenge: I faced a significant challenge in learning with the community as finding cyber sec members near area was difficult. The primary issue was lack of awareness. I overcame this by creating a community near my area and college. This experience enhanced my skills in communication and team leadership (:
hello to the cutest cyber lady😁. First of all, thanks for presenting such a great opportunity . and about me : my self Ajay i am a BCA graduate this year only & i am in cyber field learning from last 3 years also cleared CEH last year and now looking for some other certificate to move forward in this field about the technical challenge : this field is so deep like no end everyday there's something new nobody can cover everything but side by side i feel it's really thrilling and so fascinating as well to get to know new techniques, tricks, tactics i love this field
Hi Farah, Thanks for the video about detailed overview about OSCP exam. I am working professional in Backend Engineering and building my skills in Cybersecurity and Penetration testing for an year. Throughout this journey I participated in many CTF's and Hackathons. Also trying to find bugs in my free time. I always wanted to fulfill my career as a Penetration tester. Hope this giveaway will help me to achieve the same and enter into the realm of Cybersecurity !!
Hey Farah, I really like your videos, and have been following you for almost 2 year now. Background: I have been working as a penetration tester for almost 1.5 years now, and I'm currently going through the TJ Null's list of OSCP Like Boxes in preparation for the OSCP. Challenge: One of the many challenges I faced was while giving the PNPT exam. I failed my first attempt of the PNPT exam, after preparing for it for about 8 months. Failing crushed me, and I was lost. But instead of giving up, for the next two months, I worked on the weaknesses which made me fail the first attempt of the exam, gave the second attempt, and finally passed the PNPT. I would be grateful to win an OffSec Learn One subscription, as it will help me achieve a major goal of mine. Thank you for this opportunity!
I recently completed a BE in computer science as a fresher I am searching for an entry-level job. Since childhood, it has been my dream to become a computer engineer. After completing my degree, I am doing a cyber security professional course that will be completed in a week. I am watching your videos from David Bombal, and making a collaboration video with you has really inspired me to become a cybersecurity professional. So, I want to be the best hacker and protect the people.
I am BCA graduate and and learn cyber security from last 2 years and OSCP is like a dream because i think it will give much more hands on experience then other certs in network pentesting. BTW in technical challenge which is hardest of all time for me is when my linux machine brokes and shows me some kernal panic situation i made backup of my data as soon as i see that error and then searching for stuffs to solve that error i also asked my friends in group and they said just reinstall the linux i said naaah i want to know whats the actual problem bro and then searching for documentations and jumping into different sites and videos and ask chatGPT and finally got the solution after 4-5 hours, the relief and happiness in my face 🥺 i can't explain it in the comment.
Hi Farah, I’m new to your channel, and this is the first video I’ve watched. I must say, it’s very informative, and I appreciate your generosity in offering such a valuable course subscription. I’m currently pursuing a BCA degree and have developed a strong interest in hacking. After researching the field, I charted my learning path, earned my Google Cybersecurity Certificate, and am now working through the eJPT certification. To fund these certs, I’ve been working as a food delivery partner while managing an educational loan. Despite the challenges, I’m determined to continue advancing my skills and following my goals. So far, things have gone according to plan, and I hope to keep progressing in the future. Wishing you the best of luck and strength to overcome your challenges. Have a great time Thank you.
Hi Farah Hawa, currently i am doing my bachelors and this year i have already done my CEH Master certification and in the field of cyber security i have written one research paper too which is going to be published and i am working on another research paper in the field of cyber security. Apart from my Research and Analytical skills i have done internship also as a cyber security researcher in which i developed latest methodologies for social engineering techniques.The technical challenge that i faced was while working and getting the results for my research paper since their is not much of practical knowledge available on the internet it was really hard for me to write a exact code to get the desired output but then i read 2-3 books and took the help of my mentor in getting the exact outputs for my research and also i did tried some other methods of programing which gave me an idea of the path way that can be followed.
Background: I am a mechanical engineer. I started learning about web security two years ago with no prior knowledge, and alongside that, I began participating in bug bounty programs on Bugcrowd. Honestly, in 2021, I didn’t know how to use a laptop, but I later bought one. Offensive security fascinates me. I’m still learning and striving to be a better version of myself every single day.
Hi Myself Mohamed Basil . From my 11th grade, I have been deeply passionate about cybersecurity and ethical hacking. With no financial resources, I began my journey using free online resources, learning about cybersecurity concepts and tools on my own. After completing my BCA degree, I had a pivotal moment where I convinced my father to let me pursue the CISSP certification instead of a Master’s degree, going against traditional expectations. Despite the odds, I passed the CISSP exam, becoming an Associate of (ISC)².
My CISSP certification has provided me with a strong foundational understanding of security principles, but I now want to strengthen my practical, hands-on skills in penetration testing and ethical hacking. The OSCP certification is the perfect next step to bridge this gap and help me achieve my dream of becoming a highly skilled ethical hacker. Unfortunately, due to financial constraints, I cannot afford the OSCP voucher. However, I’ve been dedicating myself to self-paced learning through Hack The Box to gain practical experience and build my skills.
My CISSP certification has provided me with a strong foundational understanding of security principles, but I now want to strengthen my practical, hands-on skills in penetration testing and ethical hacking. The OSCP certification is the perfect next step to bridge this gap and help me achieve my dream of becoming a highly skilled ethical hacker. Unfortunately, due to financial constraints, I cannot afford the OSCP voucher. However, I’ve been dedicating myself to self-paced learning through Hack The Box to gain practical experience and build my skills.
Continue.. A technical challenge encountered was while working on the Hack The Box machine Jeeves. It involved exploiting a Jenkins Continuous Integration system. I initially struggled to identify the correct attack vector and spent hours enumerating without success. However, I revisited the basics, carefully examining the Jenkins interface. Eventually, I discovered a way to access its script console and execute arbitrary code, which allowed me to escalate privileges and gain root access.
Hi my name is Tanish. I have 2 years of experience in Application Security. I want to advance my carrer if i get opportunity to do OSCP so i could get better job opportunity. One technical challenge i faced is that there is requirement from a company to convert all cve's description to a title of 5 words. So there were cve's from 2016 to 2024 and that's gonna take a lot of time if we do manually and those people were doing manually so what i did, i used openai model and customised my prompt and coded everything in python and converted all descriptions to title overnight only. So the work for 1 or 2 years was done in single night.
Hi, Abhishek here I have completed my IT degree and now am currently working in network security to start my journey in Cybersecurity. OSCP is the certification that i am planning to pursue to transition my career into a VAPT job role. The difficulty I faced is understanding the proper structuring while performing pentests where i tended to be very rigid while hacking which lead to failures often. I started switching styles by watching walkthrough videos and blogs that gave me perspective about new methods and opened up many routes. I still have a long journey ahead and a lot to learn so I cant say I have mastered the art but well you never do xd. Thank you
I'm a computer science student.To overcome challenges in networking, I’ve been building and experimenting with networks in Packet Tracer. This giveaway would be a significant help for my Cyber Security journey.
I'm Abdulrahman from Egypt, I have experience in Offensive Security in a variety of domains (web, mobile, network),. I contribute to the Arab community by making courses on my YT channel. OSCP will help me land my first job as a penetration tester due to the technical value it provides as well as its impact on the market.
Hi Farah Hawa, I’m Aman, a 2nd-year BCA student passionate about cybersecurity. Background: I focus on building skills in web application testing, reverse engineering, and API security. I regularly participate in CTFs and practice programming and security concepts daily. Technical Challenge: One of my toughest challenges was solving my first reverse engineering task. I approached it step-by-step, learning assembly basics, analyzing the code, and debugging patiently. After hours of effort, I successfully identified the issue and solved it, boosting my confidence significantly. Winning this giveaway will bring me closer to achieving my OSCP goal!
I am from a non technical background. I have done Bachelor's degree in Arts...Being a non technical background the most challenging part for me is to understand code and learn programming. Sometimes i feel like to not learn programming, but to solve this I use chat gpt to understand any code and ask to reply in analogy
Hi I am Ali, I am a university student . It has been a year I am doing bug bounty. About a month ago I started learning SOC analysis. The biggest challenge I tackled was an exam to get the addition to study in university. My feature goal in to create my own company with various services e.g; web app pentesting, secure code review and so on...
Hey farah love your contents, im a part-time bugbounty hunter . Full-time home maker😅Got my CEH during covid and started my bughunting . I reported a bug in a platform that was researching about COVID.But, my report was marked N/A. I was little bit worried that its a bug that expose all patient records and records can be manipulated .I understood i did not exhibit the exploitation part technically and within few hours managed to exploit the bug and show the impact .company accepted my report and said that there is also some other issues related to this bug and will get it patched . as well , rewarded me with bounty that gave me some confidence to say Hackers can emerge from KITCHEN too🎉 Farah, Well explained about OSCP. ❤ hope to win one 🎉😅😊and upgrade my bughunting skills to the nxt level
hy teacher I have been watching your videos since 2021, and they have been a game-changer in my cybersecurity journey. Your tutorials have taught me so much about bug hunting and exploiting vulnerabilities, and they’ve helped me build a strong foundation in this field. I want to pursue OSCP because I dream of becoming an ethical hacker who contributes to making networks and systems more secure. I believe OSCP will give me the structured knowledge and skills I need to advance in this field and make a real impact. Your journey has been a huge inspiration for me, and I aspire to inspire others in the same way someday. Winning this giveaway would be a life-changing opportunity for me to turn my passion into a profession
I am a student pursuing Btech Cybersecurity. I have been in this field for a few years now...I share what I have learned on my social profiles and blog and have made 100K+ Community. I have done an internship with Gurugram Cyber Police and worked with a few of the cyber investigators. I really want to get into cybersecurity as a career and OSCP will surely help me with this.
I am a Btech student with specializing in cybersecurity and i am currently studying to get into cybersecurity and i think as i doesn't face some sort of professional challenge, but i always stuck to tutorial hell and sometimes loose motivation and, but i think going for a practical certification would help to break out from this loop and also accelerate my career, for now i am preparing for cpts and hopefully will get it by next year
how long do yall think it is going to take someone to prep and pass OSCP with a background of 1 year exp as IT field service tech, WGU BS in IT ( A+, Net+, Sec+, AWS CP, ITIL) ?
Hello, I am Atharv I am currently pursuing MS in cybersecurity in USA. I have 2 years of experience in IT industry in India. The technical challenge I faced was my educational background, I have done my bachelor's in mechanical engineering and then switched to IT. So the way I overcame this is by using internet. I taught myself how to code, all of the computer networking and computer science concepts and got a job in IT. I am currently preparing for security+ which Ill get in this month and the next thing will be OSCP(fingers crossed). FYI your journey from non tech background really inspired me. Thank you.
Background: Mechanical Engineer, and after gap of 4 years and now working as Soc analyst for past 11 months. Challenge faced : Not actually a challenge but identified network misconfigration which was manipulating results for our Vulnerability assessment tool for multiple servers behind load balancer.
I am Kaustubh, currently working as security consultant majorly performing vapt of web, mobile,network api and looking for certification that could help me add more value to my profile and skills. Last technical challenge : I have switched my career from soc to offsec side pentesting in last year while switching i have gone through different youtube videos of yours which were short and to the point content was there and major test cases were also covered which helped me for understanding different vuln like jwt,oauth misconfig, saml auth,etc and also your channel has been my go to place for revision of vuln. Thanks for organizing the giveaway.
My self Prithviraj ,so I started my cybersecurity career last year as SOC Analyst after my B.E degree and have completed my 1 year in cybersecurity field. So as answer for technical challenge I faced, was, last year when I was on a project for securing Endpoint through Crowdstrike,So we got a high alert on a endpoint and I was alone handling the night shift I immediately look though it I then quarantine the endpoint from the network then tried to investigate it then I found that the endpoint had download a Malicious file from chrome I immediately kill that file (even scanned the whole endpoint before quartine it )and so this was how I faced and solved the technical issue.
I am currently a student in bsc in cyber security and i have a background about network , programming, pentesting by learning material of ejpt. A technical challenge i face is in adapting in changing cyber attacks tactics and technichs i see in mitre and alot of framework as attackers are become smarter and smarter and how i overcome it with subscribe and follow to famous people and experience in cybersecurity in twitter and youtube and telegram to overcome this problem and thankyou for that giveway
Hello i am Arjun A self taught learner in bug bounty field and i am from non technical background but from my school days i was curious About this stuff and now learning this And in my learning i faced the challenge of starting out actually i watched many videos about bug hunting roadmaps and many more stuff but after watching your podcast with david bombal and visiting your channel i got my path thank you ❤
Hi, I have a security master's degree and am looking for a job. I think this certification helps me get a job more quickly than expected. Before my master's, i was working as a system administrator. The technical challenge I faced in my job was there is EOL(End of Life) operating system. My client doesn't have budget for that server. I implemented network segmentation. By implementing network segmentation I mitigated risks with that EOL server.
Hi Farah, excellent video, a technical problem that seems to follow me all the time, is that every time that I type something, my words seem to get morphed, changed all the time, there is a bug-code in all my up to date modern devices, the security challenge would be to find that bug code even if it is invisible and destroy that code, I guess, see you on the next video, looking Good and sounding good too…😺🥰💫💎
Hey, As most of your viewers I'm also a Btech Cyber security student but a different thing is i get university very far from my home just because of cyber security specialization now I'm doing it but academic is not giving me as much my potential nd can't afford certification. As a challenge not a bigger one but yes one of my frnds lost his fees and asked me to help and that time i was not able to help him financially so i hacked my school website to pay his fees :-) ik it's illegal but yes Thsnks if u read and hope to win this 🙂
I'm a BCA student currently preparing for OSCP from open source courses because I cannot afford it for now. I really want this certificate as I've prepared a lot for this. The biggest problem I face is to keep myself motivated for my work. I wish to win this certificate 🤞🙃
hello farah i am in cybersecurity field from 3 year doing malware development, malware analysis, reverse engineering enjoy to play and experiment with PE file to bypass windows defender edr even with metasploit, i also do programming in python, C,C++ , x86 assembly language, x64 assembly language (intel), sometimes golang , and i am currently learning exploit development and on side doing BCA, and i want to do offsec (OSCP) exam.
I am a web app pentester looking to expand my skills into network and internal pentesting. I’ll make the most use of this giveaway and it’ll help me in my career path as well. Also Farah is very kind and generous. 👀😁
Hey Farah. Thank you for this wonderful opportunity, it really would mean a lot for me to win! I have always been tinkering with computers since young and just love learning more and more. Currently I am working for a small company as a Network Administrator and I am actually designing a new network implementation for them from scratch including TCP/IP functionality, routing/switching, Active Directory, AAA, security and more. I got this opportunity because I just got my CCNA and have been working very hard on my IT fundamentals. My next steps and my dream is to move to offensive security. A big technical challenge I have been facing is: How do I make sure my network design will work as intended without disrupting or risking the company's workflow? My solution has been building a close simulation in my home-lab using both hardware and virtualization techniques and running lots of back-tests. This way I can have the whole system ready to deploy quicker, foresee any issues and demonstrate to my employer the functionality.
@@FarahHawaStill a student and always be as cyber security is a never ending journey and as a self learner, the first challenge I faced when I install Kali Linux, then time passed and I learned to use Linux and till date this is a journey.
Hi I graduated with a CS degree last year but have not landed a role yet. I would like to add a certification to my resume to get into a offensive security role in the future!
Myself Gurupranesh, I am currently pursuing diploma in computer science and engineering (India, Karnataka). I come from a village, so I have not been able to get the finance aid for doing the certifications, even like CEH is not affordable for me, but I have enough skills for clearing the OSCP as I have solved many of the free OSCP like machines, this certification will help me in getting/cracking a job as fresher and help me more in the future, the technical challenges I have faced getting the hands on experience for the topics I have learnt from various free sources, but some how I managed it by documenting the procedure, in the hope of some day I will get the solution.
I have even reported bugs to companies like Zomato, Tesla,etc but all of them were p5 or informative, and I have even helped my college to secure there website and network infrastructure, by using the resources I learnt for free
My name is Salman, struggling bug bounty hunter. Last year I was working as Remote Penetration Tester. The biggest challenge was-to work along with university, it’s really hard to manage both specially when you work with professional organisation. My goal for 2025 is to achieve industry level cybersecurity certificates like OSCP additionally I have to afford this with bug bounty rewards It’s seems hard but inshallah I will do this. 😊
Hello farah di 😅 big fan My self Aashutosh from India My Technical background : currently just pursuing with MCA And About the interest in cyber security : well it's kinda funny 😅 I started cyber security as I find one of my friend doing wifi hacking back 6 year ago with rooting Android and cracking WEP password and from that day I find so fascinating that I just kicked everything and jumped into this field 😂 from that day I am seriously studying and also playing CTFs regularly over HTB THM also on THM I am in top 1% people 😅 And about the hurdles : Well actually Not a hurdle but a mistake I thought it's ok not to learn programming languages but as I wish to be a elite penetration tester I think it's must to know how to code how to write exploits so I faced that challenge now I am moving fine with that hurdle too And at last I wanna thank you for being such a great inspiration
Hello i have had the dream of cracking off of oscp for the last 4 years. Well the thing about the challenge was that I had completed one missing person ctf case where I first break down the case part in small chunks then work on every part with time management and effectively and cost cutting manner with walks breaks under stress take water walk searching on the internet and what not but never leave the challenge alone and at last compiled everything into a organised report and submit it to law enforcement, well i always wanted to give oscp I can't afford it but i know i will one day!! Have my name on that letter and black hard metal card engraved
My name is Bekan I am pursuing my career in cyber security mainly focused on web penetration testing and the OSCP is my dream its very important for me and I hope I will din it
Hey i am kosikh dutta beginner in bug bounty i reported 10+ bug reports but all are duplicate,not applicable,informative . Also acknowledge by indian government for safe there site. Currently i am persuing my bca course , if i get this giveaway really it's means lot for me ☺️☺️
I'm currently working full-time in Information Security, and for me, the most challenging part has been cracking security interviews. Even when I'm well-prepared, I sometimes struggle to manage the fear and emotions that come up, making it hard to explain things properly even when I know the concepts inside out. Over time, I learned to face this fear head on and focus on learning from my mistakes. After attending more than 10+ interviews, I gradually started cracking them one by one.
I'm a college student trying to pursue a career in cybersecurity. I am currently working on Android platform and Android application vulnerabilities. While working on one of the type confusion vulnerabilities of Chromium, I needed to build Chrome from scratch to replicate the CVE. While doing so, I encountered multiple errors during the build, and even after completing it, the CVE was not triggered. So, I had to troubleshoot extensively, analyzing the build process and adjusting configurations until I could successfully replicate the issue.
First Thanks @farah ma'am🙏🏻 I am 4th year Computer Science Student Jay (very keen to learn cyber security) and at the same time i am give at least 5 hour a day to prepare for OSCP or CRTP (Active Directory) and as you asked for difficulty i found in any topic was understanding the Persistence Attacks (Golden Ticket, Diamond, Silver, OPTH) LIKE THESE ARE VEY CONFUSING FOR ME Btw i'm very happy for this giveaway, Hoping for OSCP, Ma'am Thanks a lot 🙏🏻❤
I've been working in cybersecurity for 3.5 years. My employer does not want to pay for OSCP unfortunately and it's hard to switch without the certification :( I can't afford it myself in my current situation. I have faced lots of technical issues during work, it happens every day as this field is quite challenging. Maybe one I can list here is when I had to perform a penetration test on a 4G / 5G system, which I knew almost nothing about when I started the project. I've learnt a lot about it and successfully found a critical vulnerability for the customer which we were able to resolve together making the system that much safer :) I'll try my luck, maybe I get lucky and can finally attempt the OSCP!
Hello, Farah. I'm Sai U from Bengaluru, and I have two years of experience as a penetration tester. While I have not yet obtained my OSCP certification, it is a goal I am working towards. Understanding and adjusting with people has been one of the most difficult tasks I've faced in my work, requiring both technical and interpersonal skills. For example, when I became the PT lead for my project, I was so intent on impressing the client that I frequently forgot the reality that he was a manager rather than someone who was PT versed with the complexities of penetration testing. This event showed me how important it is of customizing my approach to my audience's expertise and perspectives. Thanks for your insights as always, Peace Sai U
Hi Farah, I am Aditya and currently I am a penetration tester at IBM. I hail from Electronics and Communications background, with zero exposure to cybersecurity. Getting a job as a penetration tester with no background in cybersecurity was a difficult path indeed, but in the process I understood the value of OSCP. So, it has been the one of the certifications that I have on my bucket list. The technical challenge that I have faced, or mean to say, face on everyday basis is teaching the devs about the vulnerabilities and the impact they possess on the applications. It kinda is difficult to make them understand the security perspective of the things.
I am pursuing computer science with specialisation in cyber security , i am currently a student and hold EJPT cert, The technical challenge I faced was setting up an IDS using pfSense on a VM. which required two interfaces but i had only one Wi-Fi card available on my laptop, So i used my laptop’s LAN port as the second interface and created a virtual adaptor, successfully simulating a dual-interface router setup and completing the project. Everyone in my class had bought a wifi dongle for the same 😆
I'm computer engineering 2nd year student, I'm learning all these things when I passed my 10th standard. I have also done bug bounties, and got my first 4 figure bounty when i was in under age through IDOR vulnerability. Even I was also thinking about OSCP. Hope you see this comment... Thank You.. Have a great day!!! 😊
🇮🇳 Hi! My journey into cybersecurity started back in school, around 8th or 9th grade, when I was captivated by the workings of networks and the challenge of securing them. What began as curiosity soon grew into a deep passion for safeguarding the digital world. Today, as a college student pursuing cybersecurity, I’m fully immersed in this exciting field and loving every step of the way. A huge shoutout to mentors like you, who inspire and guide with real-world technical insights-your support has been a game-changer. I can’t wait to see what the future holds in this thrilling journey! 🇮🇳
Hii Ma'am ! Myself Vivek , Currently Final Year computer science STUDENT at Pune University, exploring cyber security over past 1 year, also done few internships related to cyber security and web dev. I am Hold certs like isc2 CC and Secops CAP, also Actively solving Portswigger and my focus is on web security and Bug Hunting, further looking forward to appear for pretesting certifications like OSCP. However been a student it is financially difficult for me to opt for it, I would be very much FORTUNATE and Glad @Farah Ma'am to receive this opportunity which not only will BOOST my knowledge but also my CAREER in Red Teaming . Also Ma'am keep posting more videos related to cyber security , I actively Follow the content whether it being Security Topics, Resources , Podcast, vlogs this really motivates and helps me a lot Thank you for the Opportunity
Being a final-year BCA student, I have spent a lot of time studying cybersecurity and working on improving the safety of systems. I find this field both challenging and fulfilling. My long-term goal is to earn a recognized certification in cybersecurity to further my expertise.
One of the toughest challenges I’ve encountered is dealing with applications that have strong security measures, such as strict traffic limits and advanced monitoring tools. By staying persistent and using innovative approaches, I’ve managed to identify areas for improvement in system configurations and application handling, which led to the discovery of an important security-related issue.
Due to confidentiality requirements, I can’t share further details, but I truly appreciate the support and guidance that help me continue advancing.
Bro, how you evade?
I am in the final year of my BCA with ethical hacking.
I exploited a caching issue by injecting malicious JavaScript into a vulnerable parameter. The poisoned response was cached, leading to widespread XSS, enabling cookie theft and user redirection.
Nowadays, finding a job is very challenging. I work as a freelancer whenever I have time, but when I apply to MNCs, they often ask for certifications. A giveaway or affordable option for certifications would really help me.
As a third-semester BCA student, I've been fascinated by ethical hacking for over a year. One of my biggest challenges was securing a Raspberry Pi web server. I struggled with implementing robust HTTPS, IP filtering, and file permissions. This experience highlighted the importance of meticulous security practices.
To overcome this, I delved into OpenSSL for certificate generation and NGINX configuration. I also leveraged Kali Linux for penetration testing and Wireshark for network analysis. While the project wasn't fully realized, it ignited my passion for security and the need for continuous learning.
I'm eager to take my skills to the next level with the OSCP certification. It aligns perfectly with my goal of becoming a skilled penetration tester. The challenges and practical experience offered by the OSCP will undoubtedly solidify my foundation and prepare me for real-world security scenarios.
I work in cyber security and have a background in forensics. A challenge I overcame was interviewing people for a cyber security role. Sometimes, people are extremely nervous and as the interviewer, I need to bring the best out of them to help give them their best shot. I will often talk to them about their background, hobbies, start off with soft skills and ease them into the interview before I ask the more difficult questions. This gentle beginning of the interview has helped people feel more comfortable and I've had several interviewees comment on how grateful they were for this approach.
I am really passionate about cybersecurity as a career. Although I currently have a developer job, I continue to hack machines on different platforms in my free time to sharpen my skills. I have already completed my CompTIA Security+ and eJPT certifications, and now I'm eager to delve deeper into penetration testing with the OSCP exam.
One major technical issue I solved at my workplace involved creating a cybersecurity solution that not only addressed our security concerns but also implemented effective cost-cutting strategies. Additionally, I've participated and dedicated hours in countless CTFs and one of my recent projects involved developing a machine learning model to identify phishing websites
The OSCP exam would be a great next step in my journey to becoming a more skilled and knowledgeable cybersecurity professional. Also, a major cinephile and as Elliot once said "Hello Friend. This Only Works If You Let Go, Too."
Hello Farah,
This video was awesome! I really appreciated how you explained the importance of the OSCP in today's industry. Thank you for hosting this giveaway; it's incredibly generous of you!
I’m currently working as a Web Application Security Specialist and looking to expand my skillset with the OSCP to transition into a more penetration testing-focused role. One technical challenge I recently faced was testing an application’s file upload capabilities. I uploaded a PHP file with a payload designed to print out user details, but despite the payload being correct, some validation prevented it from working.
To bypass both client-side and backend validation, I tried various techniques, including using different file extensions, altering Content-Type headers, injecting characters like %00, and even removing front-end validation functions. What finally worked was changing the file's initial bytes, or Magic Bytes, to manipulate the file signature, allowing me to bypass the checks successfully.
Thanks again for the great content and this opportunity. Keep up the amazing work!
I'm student of Master of Science in Cyber Security and currently doing internship in Pemetration testing. During my penetration test i have found critical bugs.
My Toughest technical challenge was recovering from kali linux crash and i have solved it with the help of booted pendrive to get data backup and reading linux documents and other articles.
Hi Farah, I love your content! Like you, I also come from a non-tech degree background, but I've been working as a software developer for 5 years and practicing bug bounty hunting and penetration testing for the past 2 years. I believe I’ve developed strong skills in this area.
I aspire to transition fully into penetration testing and gain more profound knowledge. I’ve been researching certifications, and OSCP seems like a perfect fit for my goals. Hearing about your journey motivates me to keep pushing forward in mine!
hi farah, i am cybersecurity professional at KPMG. One of the challenges I faced recently was learning AD and I overcame it through self pace learning using various materials available on internet and then practising the same on open source labs and HTB boxes
I have a bachelors in cybersecurity and masters in cybersecurity management. I work as an SDM but looking to switch to security engineering. As far as a technical challenge, there have been many, but one example was as a security engineer on a blue team we were mitigating a sustained (48 hr) DDOS attack which was constantly shifting as to vector, spoofed IP range, signatures, etc. We could block once we spotted the new pattern, but rapid shifting meant server impact and load was how we saw the shift. To get ahead of this I wrote some bash scripts to constantly centralize and monitor logs, looking for specific patterns then dynamically adjust firewall rules along with some quick and dirty reporting to keep an eye on what it was doing. Solved about 85% of shifting attack traffic.
Hello Farah,
I work in cyber security as an Penetration Tester. One of the biggest challenges I’ve faced is the constant need to balance learning and applying new techniques in web security testing. Bug bounty hunting has been instrumental in improving my skills, as it allows me to explore real-world applications, encounter unique scenarios, and adapt to different environments. For example, identifying misconfigurations or logic flaws across platforms has taught me a lot about creative thinking. I overcame this challenge by allocating time for hands-on practice, learning from write-ups. This has significantly improved my ability to find and exploit vulnerabilities, which has, in turn, enhanced my penetration testing work. However, as I advance in my career, I realize the importance of certifications like OSCP for professional growth. A certification would validate my practical experience and give my career the boost it needs.
Hello farah, i am a recent graduate. Last week i got my CCNA certification. The oscp has been on my mind for a long time but its difficulty level has always dettered me from persuing it but after my recent success with the ccna i have gained confidence that i can do the oscp as well. Although the two are very different the knowledge gained and the habits i made while preparing will definitely help me. A recent technical issue that i faced was using a 5g phone as home internet for a house. The diifculty was that i had to keep the phone charged at all times and use usb tethring to a router. But when every there was a power xut which happens 3 to 4 times daily on would have to manually turn the usb ethernet tethring option in the mobile setting so i used a script to automate it so that it automatically turned the feature on without manual intervention
The ccna was also very hands on. I had to do a lot of configurations related to networking ip routes, security fetures like ALCs, and security was a separate section in the exam
Hey Farah,
Thank you for the insightful briefing on the OSCP exam. I hope you're doing well. I've been following your channel since the beginning of my cybersecurity journey, and your videos have been instrumental in building my foundational knowledge. Over the past two years, I've been working in the cybersecurity field, focusing primarily on penetration testing for applications. However, I feel like there are gaps in my learning that could be bridged with a more structured approach, along with valuable certifications to enhance my credentials in this field. The OSCP would be a game-changer for me, but unfortunately, it’s beyond my financial reach. Winning an OSCP from you would provide a tremendous boost to my career and help me further my growth in the industry.
HI Farah, your videos are an absolute goldmine for aspiring cybersecurity professionals like me! The way you break down complex concepts makes the daunting journey to certifications like OSCP feel achievable. I've been working hard to transition into penetration testing, and winning this OSCP giveaway would be a dream come true. It’s not just about the cert-it’s about the opportunity to learn, grow, and hopefully inspire others, just as you’ve inspired me. Thank you for creating such impactful content and for giving back to the community with opportunities like this..
Hi Farah I love your content you always share I am student right doing master's in cyber security I faced challenges cyber security or in my real life is my confidence and fear of people so that think I know from my beginning so I decided to join community and I got some cyber security community.now doing volunteering the hackers meet-up from last 1.5 year and that think increase my confidence, communication skills and made me better person and increase my problem solving skills
Hello, I am Manish Neupane, a BCA student currently in my 7th semester from Nepal. As part of my 8th semester, I need to complete an internship, but most companies require an OSCP certification. Achieving this certification would greatly help me secure a position and advance in my cybersecurity career.
One technical challenge I faced was during a CTF competition. I was tasked with exploiting a vulnerable web application, but the usual tools didn’t work. After analyzing the application’s behavior, I discovered a unique SQL injection vector. I crafted a custom payload, successfully exploited the vulnerability, and captured the flag. This experience boosted my confidence and problem-solving skills.
Thank you for this opportunity!
Hi, am Santhosh
As someone with a non-IT background, my journey into cybersecurity began through bug hunting. One of my technical challenge was identifying a rate-limiting vulnerability in a web application. Initially, I didn’t fully grasp the concept of rate limiting and its security implications.But I researched rate-limiting mechanisms and discovered a flaw where large volumes of requests were not being properly handled. I submitted a detailed report, which led to a successful bug bounty of $10 and a $25 gift card.
Although I feel I’ve felt that I am in same spot in my bug-hunting journey. I’m eager to delve deeper into penetration testing and offensive security. I believe that this OSCP course giveaway will encourage me to upskill myself.
Thank you.
Hi, my name’s Ethan, and I work in cybersecurity as a penetration tester.
In my experience, one of the most challenging aspects of this field-apart from the struggle of landing that first job as a junior-is the continuous learning. Cybersecurity is constantly evolving, with new threats, technologies, and methodologies emerging almost daily. Staying updated means dedicating time and effort to learning new skills, mastering tools, and understanding ever-changing attack vectors. It can feel overwhelming, especially when juggling work responsibilities and personal growth.
But it’s also what makes the field so rewarding. Every challenge you overcome makes you stronger and more prepared for what’s next.
Background:
I have a strong foundation in computer science, with expertise in programming, data structures, algorithms, and database management. I've gained practical experience through projects and open-source contributions.
Technical Challenge:
I faced a significant challenge in learning with the community as finding cyber sec members near area was difficult. The primary issue was lack of awareness. I overcame this by creating a community near my area and college. This experience enhanced my skills in communication and team leadership (:
hello to the cutest cyber lady😁. First of all, thanks for presenting such a great opportunity .
and about me : my self Ajay i am a BCA graduate this year only & i am in cyber field learning from last 3 years also cleared CEH last year and now looking for some other certificate to move forward in this field
about the technical challenge : this field is so deep like no end everyday there's something new nobody can cover everything but side by side i feel it's really thrilling and so fascinating as well to get to know new techniques, tricks, tactics i love this field
thankyou
great course !
Hi Farah, Thanks for the video about detailed overview about OSCP exam. I am working professional in Backend Engineering and building my skills in Cybersecurity and Penetration testing for an year. Throughout this journey I participated in many CTF's and Hackathons. Also trying to find bugs in my free time. I always wanted to fulfill my career as a Penetration tester. Hope this giveaway will help me to achieve the same and enter into the realm of Cybersecurity !!
Hey Farah,
I really like your videos, and have been following you for almost 2 year now.
Background: I have been working as a penetration tester for almost 1.5 years now, and I'm currently going through the TJ Null's list of OSCP Like Boxes in preparation for the OSCP.
Challenge: One of the many challenges I faced was while giving the PNPT exam. I failed my first attempt of the PNPT exam, after preparing for it for about 8 months. Failing crushed me, and I was lost. But instead of giving up, for the next two months, I worked on the weaknesses which made me fail the first attempt of the exam, gave the second attempt, and finally passed the PNPT.
I would be grateful to win an OffSec Learn One subscription, as it will help me achieve a major goal of mine.
Thank you for this opportunity!
I recently completed a BE in computer science as a fresher I am searching for an entry-level job. Since childhood, it has been my dream to become a computer engineer. After completing my degree, I am doing a cyber security professional course that will be completed in a week. I am watching your videos from David Bombal, and making a collaboration video with you has really inspired me to become a cybersecurity professional. So, I want to be the best hacker and protect the people.
I am BCA graduate and and learn cyber security from last 2 years and OSCP is like a dream because i think it will give much more hands on experience then other certs in network pentesting.
BTW in technical challenge which is hardest of all time for me is when my linux machine brokes and shows me some kernal panic situation i made backup of my data as soon as i see that error and then searching for stuffs to solve that error i also asked my friends in group and they said just reinstall the linux i said naaah i want to know whats the actual problem bro and then searching for documentations and jumping into different sites and videos and ask chatGPT and finally got the solution after 4-5 hours, the relief and happiness in my face 🥺 i can't explain it in the comment.
Hi Farah,
I’m new to your channel, and this is the first video I’ve watched. I must say, it’s very informative, and I appreciate your generosity in offering such a valuable course subscription.
I’m currently pursuing a BCA degree and have developed a strong interest in hacking. After researching the field, I charted my learning path, earned my Google Cybersecurity Certificate, and am now working through the eJPT certification. To fund these certs, I’ve been working as a food delivery partner while managing an educational loan. Despite the challenges, I’m determined to continue advancing my skills and following my goals. So far, things have gone according to plan, and I hope to keep progressing in the future.
Wishing you the best of luck and strength to overcome your challenges.
Have a great time
Thank you.
Hi Farah Hawa, currently i am doing my bachelors and this year i have already done my CEH Master certification and in the field of cyber security i have written one research paper too which is going to be published and i am working on another research paper in the field of cyber security. Apart from my Research and Analytical skills i have done internship also as a cyber security researcher in which i developed latest methodologies for social engineering techniques.The technical challenge that i faced was while working and getting the results for my research paper since their is not much of practical knowledge available on the internet it was really hard for me to write a exact code to get the desired output but then i read 2-3 books and took the help of my mentor in getting the exact outputs for my research and also i did tried some other methods of programing which gave me an idea of the path way that can be followed.
Background: I am a mechanical engineer. I started learning about web security two years ago with no prior knowledge, and alongside that, I began participating in bug bounty programs on Bugcrowd.
Honestly, in 2021, I didn’t know how to use a laptop, but I later bought one. Offensive security fascinates me. I’m still learning and striving to be a better version of myself every single day.
Hi Myself Mohamed Basil . From my 11th grade, I have been deeply passionate about cybersecurity and ethical hacking. With no financial resources, I began my journey using free online resources, learning about cybersecurity concepts and tools on my own. After completing my BCA degree, I had a pivotal moment where I convinced my father to let me pursue the CISSP certification instead of a Master’s degree, going against traditional expectations. Despite the odds, I passed the CISSP exam, becoming an Associate of (ISC)².
My CISSP certification has provided me with a strong foundational understanding of security principles, but I now want to strengthen my practical, hands-on skills in penetration testing and ethical hacking. The OSCP certification is the perfect next step to bridge this gap and help me achieve my dream of becoming a highly skilled ethical hacker. Unfortunately, due to financial constraints, I cannot afford the OSCP voucher. However, I’ve been dedicating myself to self-paced learning through Hack The Box to gain practical experience and build my skills.
My CISSP certification has provided me with a strong foundational understanding of security principles, but I now want to strengthen my practical, hands-on skills in penetration testing and ethical hacking. The OSCP certification is the perfect next step to bridge this gap and help me achieve my dream of becoming a highly skilled ethical hacker. Unfortunately, due to financial constraints, I cannot afford the OSCP voucher. However, I’ve been dedicating myself to self-paced learning through Hack The Box to gain practical experience and build my skills.
Continue..
A technical challenge encountered was while working on the Hack The Box machine Jeeves. It involved exploiting a Jenkins Continuous Integration system. I initially struggled to identify the correct attack vector and spent hours enumerating without success. However, I revisited the basics, carefully examining the Jenkins interface. Eventually, I discovered a way to access its script console and execute arbitrary code, which allowed me to escalate privileges and gain root access.
Hi my name is Tanish. I have 2 years of experience in Application Security. I want to advance my carrer if i get opportunity to do OSCP so i could get better job opportunity.
One technical challenge i faced is that there is requirement from a company to convert all cve's description to a title of 5 words. So there were cve's from 2016 to 2024 and that's gonna take a lot of time if we do manually and those people were doing manually so what i did, i used openai model and customised my prompt and coded everything in python and converted all descriptions to title overnight only. So the work for 1 or 2 years was done in single night.
Hi, Abhishek here
I have completed my IT degree and now am currently working in network security to start my journey in Cybersecurity. OSCP is the certification that i am planning to pursue to transition my career into a VAPT job role. The difficulty I faced is understanding the proper structuring while performing pentests where i tended to be very rigid while hacking which lead to failures often. I started switching styles by watching walkthrough videos and blogs that gave me perspective about new methods and opened up many routes. I still have a long journey ahead and a lot to learn so I cant say I have mastered the art but well you never do xd.
Thank you
I'm a computer science student.To overcome challenges in networking, I’ve been building and experimenting with networks in Packet Tracer. This giveaway would be a significant help for my Cyber Security journey.
I'm Abdulrahman from Egypt, I have experience in Offensive Security in a variety of domains (web, mobile, network),. I contribute to the Arab community by making courses on my YT channel. OSCP will help me land my first job as a penetration tester due to the technical value it provides as well as its impact on the market.
Hi Farah Hawa, I’m Aman, a 2nd-year BCA student passionate about cybersecurity.
Background:
I focus on building skills in web application testing, reverse engineering, and API security. I regularly participate in CTFs and practice programming and security concepts daily.
Technical Challenge:
One of my toughest challenges was solving my first reverse engineering task. I approached it step-by-step, learning assembly basics, analyzing the code, and debugging patiently. After hours of effort, I successfully identified the issue and solved it, boosting my confidence significantly.
Winning this giveaway will bring me closer to achieving my OSCP goal!
I am from a non technical background. I have done Bachelor's degree in Arts...Being a non technical background the most challenging part for me is to understand code and learn programming. Sometimes i feel like to not learn programming, but to solve this I use chat gpt to understand any code and ask to reply in analogy
Hi
I am Ali, I am a university student .
It has been a year I am doing bug bounty. About a month ago I started learning SOC analysis. The biggest challenge I tackled was an exam to get the addition to study in university. My feature goal in to create my own company with various services e.g; web app pentesting, secure code review and so on...
Hey farah love your contents, im a part-time bugbounty hunter . Full-time home maker😅Got my CEH during covid and started my bughunting .
I reported a bug in a platform that was researching about COVID.But, my report was marked N/A.
I was little bit worried that its a bug that expose all patient records and records can be
manipulated .I understood i did not exhibit the exploitation part technically and within few hours managed to exploit the bug and show the impact .company accepted my report and said that there is also some other issues related to this bug and will get it patched . as well , rewarded me with bounty that gave me some confidence to say Hackers can emerge from KITCHEN too🎉
Farah, Well explained about OSCP. ❤
hope to win one 🎉😅😊and upgrade my bughunting skills to the nxt level
hy teacher
I have been watching your videos since 2021, and they have been a game-changer in my cybersecurity journey. Your tutorials have taught me so much about bug hunting and exploiting vulnerabilities, and they’ve helped me build a strong foundation in this field.
I want to pursue OSCP because I dream of becoming an ethical hacker who contributes to making networks and systems more secure. I believe OSCP will give me the structured knowledge and skills I need to advance in this field and make a real impact.
Your journey has been a huge inspiration for me, and I aspire to inspire others in the same way someday. Winning this giveaway would be a life-changing opportunity for me to turn my passion into a profession
I am a student pursuing Btech Cybersecurity. I have been in this field for a few years now...I share what I have learned on my social profiles and blog and have made 100K+ Community. I have done an internship with Gurugram Cyber Police and worked with a few of the cyber investigators. I really want to get into cybersecurity as a career and OSCP will surely help me with this.
I am a Btech student with specializing in cybersecurity and i am currently studying to get into cybersecurity and i think as i doesn't face some sort of professional challenge, but i always stuck to tutorial hell and sometimes loose motivation and, but i think going for a practical certification would help to break out from this loop and also accelerate my career, for now i am preparing for cpts and hopefully will get it by next year
how long do yall think it is going to take someone to prep and pass OSCP with a background of 1 year exp as IT field service tech, WGU BS in IT ( A+, Net+, Sec+, AWS CP, ITIL) ?
I'm a data scientist and I'm quite interested in career switch. My little sister is also interested in cyber security especially pentesting
Hello, I am Atharv
I am currently pursuing MS in cybersecurity in USA. I have 2 years of experience in IT industry in India. The technical challenge I faced was my educational background, I have done my bachelor's in mechanical engineering and then switched to IT. So the way I overcame this is by using internet. I taught myself how to code, all of the computer networking and computer science concepts and got a job in IT. I am currently preparing for security+ which Ill get in this month and the next thing will be OSCP(fingers crossed). FYI your journey from non tech background really inspired me. Thank you.
Background: Mechanical Engineer, and after gap of 4 years and now working as Soc analyst for past 11 months.
Challenge faced : Not actually a challenge but identified network misconfigration which was manipulating results for our Vulnerability assessment tool for multiple servers behind load balancer.
I am Kaustubh, currently working as security consultant majorly performing vapt of web, mobile,network api and looking for certification that could help me add more value to my profile and skills.
Last technical challenge : I have switched my career from soc to offsec side pentesting in last year while switching i have gone through different youtube videos of yours which were short and to the point content was there and major test cases were also covered which helped me for understanding different vuln like jwt,oauth misconfig, saml auth,etc and also your channel has been my go to place for revision of vuln.
Thanks for organizing the giveaway.
I'm a student and my challenge was remembering all the new concepts I'm learning, and my solution is to use anki
Nice giveaway
My self Prithviraj ,so I started my cybersecurity career last year as SOC Analyst after my B.E degree and have completed my 1 year in cybersecurity field. So as answer for technical challenge I faced, was, last year when I was on a project for securing Endpoint through Crowdstrike,So we got a high alert on a endpoint and I was alone handling the night shift I immediately look though it I then quarantine the endpoint from the network then tried to investigate it then I found that the endpoint had download a Malicious file from chrome I immediately kill that file (even scanned the whole endpoint before quartine it )and so this was how I faced and solved the technical issue.
🔥
I am currently a student in bsc in cyber security and i have a background about network , programming, pentesting by learning material of ejpt. A technical challenge i face is in adapting in changing cyber attacks tactics and technichs i see in mitre and alot of framework as attackers are become smarter and smarter and how i overcome it with subscribe and follow to famous people and experience in cybersecurity in twitter and youtube and telegram to overcome this problem and thankyou for that giveway
great
Hello i am Arjun
A self taught learner in bug bounty field and i am from non technical background but from my school days i was curious About this stuff and now learning this
And in my learning i faced the challenge of starting out actually i watched many videos about bug hunting roadmaps and many more stuff but after watching your podcast with david bombal and visiting your channel i got my path thank you ❤
thank you for participating!
Hi, I have a security master's degree and am looking for a job. I think this certification helps me get a job more quickly than expected.
Before my master's, i was working as a system administrator. The technical challenge I faced in my job was there is EOL(End of Life) operating system. My client doesn't have budget for that server. I implemented network segmentation. By implementing network segmentation I mitigated risks with that EOL server.
Hi Farah, excellent video, a technical problem that seems to follow me all the time, is that every time that I type something, my words seem to get morphed, changed all the time, there is a bug-code in all my up to date modern devices, the security challenge would be to find that bug code even if it is invisible and destroy that code, I guess, see you on the next video, looking
Good and sounding good too…😺🥰💫💎
Hey,
As most of your viewers I'm also a Btech Cyber security student but a different thing is i get university very far from my home just because of cyber security specialization now I'm doing it but academic is not giving me as much my potential nd can't afford certification. As a challenge not a bigger one but yes one of my frnds lost his fees and asked me to help and that time i was not able to help him financially so i hacked my school website to pay his fees :-) ik it's illegal but yes
Thsnks if u read and hope to win this 🙂
Real Hacker ban gaya bhai 😂🔥
great video
Hope ❤
I'm a BCA student currently preparing for OSCP from open source courses because I cannot afford it for now. I really want this certificate as I've prepared a lot for this. The biggest problem I face is to keep myself motivated for my work.
I wish to win this certificate 🤞🙃
OSCP , every hackers dream 😭♥
hello farah i am in cybersecurity field from 3 year doing malware development, malware analysis, reverse engineering enjoy to play and experiment with PE file to bypass windows defender edr even with metasploit, i also do programming in python, C,C++ , x86 assembly language, x64 assembly language (intel), sometimes golang , and i am currently learning exploit development and on side doing BCA, and i want to do offsec (OSCP) exam.
I am a web app pentester looking to expand my skills into network and internal pentesting. I’ll make the most use of this giveaway and it’ll help me in my career path as well. Also Farah is very kind and generous. 👀😁
Hey Farah. Thank you for this wonderful opportunity, it really would mean a lot for me to win!
I have always been tinkering with computers since young and just love learning more and more.
Currently I am working for a small company as a Network Administrator and I am actually designing a new network implementation for them from scratch including TCP/IP functionality, routing/switching, Active Directory, AAA, security and more. I got this opportunity because I just got my CCNA and have been working very hard on my IT fundamentals.
My next steps and my dream is to move to offensive security.
A big technical challenge I have been facing is: How do I make sure my network design will work as intended without disrupting or risking the company's workflow? My solution has been building a close simulation in my home-lab using both hardware and virtualization techniques and running lots of back-tests. This way I can have the whole system ready to deploy quicker, foresee any issues and demonstrate to my employer the functionality.
Already got CPENT, LPT, CEH PRACTICAL, EJPT but dont have enough money for OSCP🙂
participate in the giveaway :)
@@FarahHawaStill a student and always be as cyber security is a never ending journey and as a self learner, the first challenge I faced when I install Kali Linux, then time passed and I learned to use Linux and till date this is a journey.
I don't need OSCCP certificate... I just need knowledge of the course of that certificate... If you can provide it then please do.
Hi I graduated with a CS degree last year but have not landed a role yet. I would like to add a certification to my resume to get into a offensive security role in the future!
Myself Gurupranesh, I am currently pursuing diploma in computer science and engineering (India, Karnataka). I come from a village, so I have not been able to get the finance aid for doing the certifications, even like CEH is not affordable for me, but I have enough skills for clearing the OSCP as I have solved many of the free OSCP like machines, this certification will help me in getting/cracking a job as fresher and help me more in the future, the technical challenges I have faced getting the hands on experience for the topics I have learnt from various free sources, but some how I managed it by documenting the procedure, in the hope of some day I will get the solution.
This giveaway will help me a lot, even I am a regular viewer of your channel.
I have even reported bugs to companies like Zomato, Tesla,etc but all of them were p5 or informative, and I have even helped my college to secure there website and network infrastructure, by using the resources I learnt for free
My name is Salman, struggling bug bounty hunter. Last year I was working as Remote Penetration Tester. The biggest challenge was-to work along with university, it’s really hard to manage both specially when you work with professional organisation. My goal for 2025 is to achieve industry level cybersecurity certificates like OSCP additionally I have to afford this with bug bounty rewards It’s seems hard but inshallah I will do this. 😊
Hello farah di 😅 big fan
My self Aashutosh from India
My Technical background : currently just pursuing with MCA
And About the interest in cyber security :
well it's kinda funny 😅 I started cyber security as I find one of my friend doing wifi hacking back 6 year ago with rooting Android and cracking WEP password and from that day I find so fascinating that I just kicked everything and jumped into this field 😂 from that day I am seriously studying and also playing CTFs regularly over HTB THM also on THM I am in top 1% people 😅
And about the hurdles :
Well actually Not a hurdle but a mistake I thought it's ok not to learn programming languages but as I wish to be a elite penetration tester I think it's must to know how to code how to write exploits so I faced that challenge now I am moving fine with that hurdle too
And at last I wanna thank you for being such a great inspiration
Hello i have had the dream of cracking off of oscp for the last 4 years. Well the thing about the challenge was that I had completed one missing person ctf case where I first break down the case part in small chunks then work on every part with time management and effectively and cost cutting manner with walks breaks under stress take water walk searching on the internet and what not but never leave the challenge alone and at last compiled everything into a organised report and submit it to law enforcement, well i always wanted to give oscp I can't afford it but i know i will one day!! Have my name on that letter and black hard metal card engraved
why my comment is deleting again and again. i commented five times, but it gets disappear... why 😭😭😭😭
Hey, I’m a BCA student, and doing bug bounty from last 2 years.
I want the OSCP certification so bad, for job after my BCA.
My name is Bekan I am pursuing my career in cyber security mainly focused on web penetration testing and the OSCP is my dream its very important for me and I hope I will din it
OSCP , every hackers dream 😢😢
I pray to God that I would win.
i Want to crack the OSCP :)
Cpts is best then OSCP YEAH OSCP IS GOOD TOO BUT CPTS IS INSANE ITS AWESOME
Oscp is my dream 🙃
Win🎉
My self Dev I am student currently learning cyber security
Hey
i am kosikh dutta
beginner in bug bounty i reported 10+ bug reports but all are duplicate,not applicable,informative .
Also acknowledge by indian government for safe there site. Currently i am persuing my bca course , if i get this giveaway really it's means lot for me ☺️☺️
I am 12th passed out and i am doing bug bounty . oscp exam is very easy for me 🤫🤫🤫
Want to crack the OSCP 😂
I'm currently working full-time in Information Security, and for me, the most challenging part has been cracking security interviews. Even when I'm well-prepared, I sometimes struggle to manage the fear and emotions that come up, making it hard to explain things properly even when I know the concepts inside out. Over time, I learned to face this fear head on and focus on learning from my mistakes. After attending more than 10+ interviews, I gradually started cracking them one by one.
I would like to win so muchhhhh
participate in the giveaway!
you look like vaaste song's heroine.
I'm a college student trying to pursue a career in cybersecurity. I am currently working on Android platform and Android application vulnerabilities. While working on one of the type confusion vulnerabilities of Chromium, I needed to build Chrome from scratch to replicate the CVE. While doing so, I encountered multiple errors during the build, and even after completing it, the CVE was not triggered. So, I had to troubleshoot extensively, analyzing the build process and adjusting configurations until I could successfully replicate the issue.
First Thanks @farah ma'am🙏🏻
I am 4th year Computer Science Student Jay (very keen to learn cyber security) and at the same time i am give at least 5 hour a day to prepare for OSCP or CRTP (Active Directory) and as you asked for difficulty i found in any topic was understanding the Persistence Attacks (Golden Ticket, Diamond, Silver, OPTH) LIKE THESE ARE VEY CONFUSING FOR ME
Btw i'm very happy for this giveaway, Hoping for OSCP, Ma'am
Thanks a lot 🙏🏻❤
I've been working in cybersecurity for 3.5 years. My employer does not want to pay for OSCP unfortunately and it's hard to switch without the certification :( I can't afford it myself in my current situation.
I have faced lots of technical issues during work, it happens every day as this field is quite challenging. Maybe one I can list here is when I had to perform a penetration test on a 4G / 5G system, which I knew almost nothing about when I started the project. I've learnt a lot about it and successfully found a critical vulnerability for the customer which we were able to resolve together making the system that much safer :)
I'll try my luck, maybe I get lucky and can finally attempt the OSCP!
Hello, Farah.
I'm Sai U from Bengaluru, and I have two years of experience as a penetration tester. While I have not yet obtained my OSCP certification, it is a goal I am working towards.
Understanding and adjusting with people has been one of the most difficult tasks I've faced in my work, requiring both technical and interpersonal skills. For example, when I became the PT lead for my project, I was so intent on impressing the client that I frequently forgot the reality that he was a manager rather than someone who was PT versed with the complexities of penetration testing. This event showed me how important it is of customizing my approach to my audience's expertise and perspectives.
Thanks for your insights as always,
Peace
Sai U
Hi Farah,
I am Aditya and currently I am a penetration tester at IBM. I hail from Electronics and Communications background, with zero exposure to cybersecurity. Getting a job as a penetration tester with no background in cybersecurity was a difficult path indeed, but in the process I understood the value of OSCP. So, it has been the one of the certifications that I have on my bucket list.
The technical challenge that I have faced, or mean to say, face on everyday basis is teaching the devs about the vulnerabilities and the impact they possess on the applications. It kinda is difficult to make them understand the security perspective of the things.
I am pursuing computer science with specialisation in cyber security , i am currently a student and hold EJPT cert, The technical challenge I faced was setting up an IDS using pfSense on a VM. which required two interfaces but i had only one Wi-Fi card available on my laptop, So i used my laptop’s LAN port as the second interface and created a virtual adaptor, successfully simulating a dual-interface router setup and completing the project. Everyone in my class had bought a wifi dongle for the same 😆
I'm computer engineering 2nd year student, I'm learning all these things when I passed my 10th standard. I have also done bug bounties, and got my first 4 figure bounty when i was in under age through IDOR vulnerability.
Even I was also thinking about OSCP.
Hope you see this comment...
Thank You..
Have a great day!!! 😊
🇮🇳 Hi! My journey into cybersecurity started back in school, around 8th or 9th grade, when I was captivated by the workings of networks and the challenge of securing them. What began as curiosity soon grew into a deep passion for safeguarding the digital world. Today, as a college student pursuing cybersecurity, I’m fully immersed in this exciting field and loving every step of the way. A huge shoutout to mentors like you, who inspire and guide with real-world technical insights-your support has been a game-changer. I can’t wait to see what the future holds in this thrilling journey! 🇮🇳
Secondddd
Pin me
First
Hii Ma'am ! Myself Vivek , Currently Final Year computer science STUDENT at Pune University, exploring cyber security over past 1 year, also done few internships related to cyber security and web dev. I am Hold certs like isc2 CC and Secops CAP, also Actively solving Portswigger and my focus is on web security and Bug Hunting, further looking forward to appear for pretesting certifications like OSCP.
However been a student it is financially difficult for me to opt for it, I would be very much FORTUNATE and Glad @Farah Ma'am to receive this opportunity which not only will BOOST my knowledge but also my CAREER in Red Teaming . Also Ma'am keep posting more videos related to cyber security , I actively Follow the content whether it being Security Topics, Resources , Podcast, vlogs this really motivates and helps me a lot
Thank you for the Opportunity