ฝัง
- เผยแพร่เมื่อ 29 ม.ค. 2024
- Just starting out in cybersecurity? Check out the Google Cybersecurity Certificate: imp.i384100.net/GoogleCyberse...
Patreon if you wanna click stuff:
/ madhatistaken
Welcome to Mad Hat. I'm a Cyber Security Analyst at an undisclosed Fortune 500 company. Here, we talk about tips and tricks on how to land a successful career in tech. If you are interested, make sure to hit that subscribe button!
Other Cybersecurity Certification Study Resources
CISSP Study Guide - amzn.to/3LmjOLM
CISSP Practice Tests - amzn.to/3oreDRO
Security+ Study Guide - amzn.to/3mTGPwg
A+ Study Guide - amzn.to/3KWS27n
Check Out My Setup
Gaming Chair - amzn.to/3V0nAhg
Monitors - amzn.to/3L1DVgT
Mouse - amzn.to/3H6A5Su
Keyboard - amzn.to/3mNXLVa
Microphone - amzn.to/40BQPId
Camera - amzn.to/41BqwmX
Disclaimer: Some links are affiliate links.
#cybersecuritycertification #cybersecurity #ethicalhacker - วิทยาศาสตร์และเทคโนโลยี
Anyone worth their weight in cybersecurity knows that most of these certs are only sacrifices to lay at the feet of Human Resource Managers and Resume Scanners. All guarantee nothing more than the fact that you know how to invest in yourself financially and study for a test.
I remember the good ole days, when a degree got you a job regardless if you knew anything that said degree apparently proved you were “allegedly” the better hire! lol
Oh man couldnt' say it better my self! ✊🤟
Truth!
@@Dr_Larkenlol yeah I prefer the way it is now where people have to prove they at least have a basic grasp of the information before getting hired. Much fewer incompetent people sneaking thru the interview process now which makes my job a lot smoother.
Perfectly explained
I need more people to shit on this certification so people will stop looking for it.
Couldnt agree more
Bro yes omg
HR just punching in random cert letters on Windows because the see other HR doing the same. "You need CEH for this job, I don't even know what eWTP is so No"
@@user-yh3pd2wd3i I wouldn't get this cert first because over priced like MF and it doesn't teach you that much... its just for show. There is no technical knowledge there. Thats my opinion
@ruslanbedoev9264 Very overpriced for a multiple choice exam. Pen+ covers nearly all the same concepts but at 1/5th the cost AND for ppl in govtech it meets the same 8570 requirement as CEH. IMO the "lowly" ejpt being a practical exam, where examtopics memorization won't help, is far more credible.
Thank you for shining a light on this turd of a certificate. I’ll focus my attention elsewhere.
Do one with SANS. How their price had skyrocket over the years.
Exactly! They cost a fortune. I don't think they're worth it. Take it only if your company pays for it. A friend of mine said they have to take CEH because her manager makes her do it and they'll pay for it
I think at least with SANS you actually learn sometimes useful (not trying to justify the pricing here). But i've heard that CEH even makes you study terminology and acronyms that arent even used anywhere outside of the EC world @@CriticSimon
GSEC wasn’t to bad. Just a lot of material. Yes, you do learn things.
Finally someone's addressing it 👏🏼👏🏼
Do you imagine when an hr lady who studied social sciences and can barely turn on her computer is presented with a paper that says you are a certified hacker 😂 that is how these non sens certifications get you in.
facts 😂
And here I was thinking about getting this cert soon. I'm grateful for the light you've shined on this fraudulent organization. I'll be pursuing an OSCP instead now. On another note, I've always thought of the CEH as a gimmick, since every job posting, no matter what level of experience they're actually looking for will require/prefer someone with it.
Love how helpful your videos have been!
Wow Madhat, we knew you were CISSP certified, but didn’t know you were OSCP too! Kudos, bro. Great video as usual 😊
Thanks for this Info. Didn't know about this.
Nice vid. I’ve heard bad things related to the company in the past but never looked into them.
Thank you, Mad Hat... saved me some money! Lovin' the Blade Runner / Fifth Element vibe in the background.
Make a video on OSCP please
Great video!
Great content
Woo! New video!
The thing is they’re pretty famous in south east Asia they even have million dollar contracts and so on
Yo madhat good video as always!
Do you have any suggestions or tips for dealing with alerts within SLA as a soc analyst?
I went from being a soc analyst at a small mssp to a soc analyst in a mssp run by big 4. I'm overwhelmed by the sheer amount of alerts to investigate.
If there's too many alerts for the team to handle then you either need additional analysts or more likely the signals generating the alerts need to be tuned to reduce the noise (false positives).
Or I suppose a third possibility is you're getting attacked at a high volume and you don't have the tools to automatically mitigate the attack without the need for investigation 😅
@@madhatistaken actually most of these are false positives that kind of can't be tuned to due limitations in signature developments. We have to provide detailed notes on each alert too, not sure what's the play here. Also dealing with a minimum of 2 clients per analyst.
@@YankeeTM Sounds like a bigger picture issue then with the security tech stack if you can't adjust signals due to limitations. Would have to have a discussion with the vendor(s) of your security tools.
@@madhatistaken I'm at the lower end of the chain, can't anything happening from my suggestions and i can see people got to used by burning themselves out closing these alerts on a daily basis.
Great timing 😅 i was confused between ejpt and ceh , 😅 you someone say about ejpt since i heard about ceh
I hope 8140 replacing 8570 helps cut a lot of these certification scams down.
All those companies have lobbyists in Washington, they’re not getting cut from DoD 8140.
So many of these Certs are ridiculous. Corporate recruiters and know-nothing managers make the most ridiculous gatekeeping "mandatory prerequisites". I want to know what "campaign donation" got the DoD to include CEH.
If you're in the military and you want to get this turd, you can get it with credentialing assistance. It's not too hard to find the LITERAL test online, free or paid. It's kind of sick that these scammers have lasted so long, but until they disappear off of job sites this will continue.
I took the CEH course for 2500. They spent a lot of time teaching you SEC+ and CISSP stuff. I had a voucher for the CEH, but i haven't taken it yet and don't plan to.
Bro can u sell me that voucher cheaply if thats possible for you?
@factos2021 in an ironic twist of fate, I read the Sybex for the CEH and got an extension so I could take it this March.
Never attempted the CEH and never will too damn expensive and way overhyped. I will stick with HTB as my only reference and place to get certifications.
HTB has all I need no reason to go anywhere else and waste time.
I like your videos
They recommended getting CEH at work (bank with +3000 employees) and really thought about it. It got really expensive but it is well known besides the downsides. It’s a pity but I want to change department at my company I might need to get it as it seems 😅
If they reccomend you get a certification that costs that much money, then you tell them to open their wallets. Never pay for anything a job youre in reccomends
I never felt wanting to get a certificate.
I agree with him
Im on security for 20 years. CEH curricula was always a joke. A lot of bla bla and no hand on. And security demands experience. At the time was about 3000 dollars this cert. Thanks god I used Backtrack and passed OSCP.
I think you just found a new series ;)
Wooooo Mad Hat!!! I bought the CEH course that included a voucher 3 years ago, still have not used the voucher, always wanted it since 2017 when I first got into Networking and Cyber. But now it is regarded a joke, oh so sad. I have their CEH T Shirt, without having the certificate, just because I like the name of it and the branding "Certified Ethical Hacker" haha, oh how times have changed. Now let me finish watching this video!
I applied for the CCT scholarship with them. Had to pay 200 pounds for it. It’s quite comprehensive and not beginner friendly.
Hi mate, have you take the exam yet?
They are scammers and you only get 12 months to take the course otherwise they
will remove it unless you pay an additional fee for an extension.
oh man I really wanted to get CEH before i didn't understand about cybersecurity. And A LOT of job recruiters wants this stupid cert, blows my mind ???> I connected them and they sent me like 6 emails pretty much asking when are you going to give us your money. And that was my first red flag and the cost was like 4000 CAD... like really??!? and they offered me 150$ discount. lol
Thank you!!!
You dodged a bullet for sure.
I sadly bought the EC Council Cyber Security Scholarship, it's a horrible course which is marketed as "beginner" and basically a guy reading from a
power point and you only get one year access which is not mentioned anywhere on the website.
In short don't buy any of there course or take there exams unless your company are paying for it.
That’s terrible. :/
I literally just finished my 9 month cert😅 i get it February.... hopefully. Luckily my company paid for the course
Hope you didn't have to pay for it! 😅
@@madhatistaken company paid for it lol
I got a voucher for it as part of a pen test bundle so I’ll probably do it just cause and I’ll put it at the bottom of my resume and lead with Pentest+ 😅
Ya do that, except do the opposite.
The Pentest+ teaches some good stuff. However as far as HR cares, it isnt worth the paper its printed on.
What's your opinion on OSWE for getting into appsec?
Offsec has some solid pen testing certs. I imagine their OSWE is pretty comprehensive if it's anything like their OSCP. Worthwhile certificate if you can swing the cost of it.
Polishing a turd😭😭
Great content
Wow. Just wow
Soo what another certificate you recomend to take ?
OSCP is just as well known as CEH imo without the bad PR baggage. There's also CPTS from HackTheBox, eJPT, and PJPT if you're looking for hands on pest testing certificates.
A family friend of mine is a EC council memeber and it mentoring me and its let me take test free and all which thank god these test cost way to to mucb
🤨👌: One cannot simply polish a turd.
Damn Mad hat is jjjjjacked
CPTS > OSCP > CPPT > PNPT > eJPT > CE…
For those saying CEH is an entry level cert, I would love to know why anything entry level is over $1k.
Greed!!!
Imagine passing this course and still not able to do a simple EASY HTB or TryHackMe boxes. And you're supposed to be a Certified Ethical Hacker 😂😂
I was thinking of getting the CEH after i was done with the CCNA and the Sec+, but after checking it out online (and ofc watching this video) idk what cert would be good. Any suggestions as to whats the logical "next step" cert after getting the CCNA/sec+? (Just for clarification, im looking towards something in pen testing in the long term and SOC analyst in the short run)
I've heard pentest+ is worthwhile and similar to the CEH. If you can afford it, OSCP is regarded as the best "entry" level pen testing cert. No baggage (that I'm aware of) with offsec company aside from them raising their prices. eJPT, PJPT, and CPTS are also worthwhile pen testing certs albeit unknown by HR.
@@madhatistaken do you think the oscp is "difficult" persay? Like, what are some things you think people should know (at least have a baseline knowledge of) before getting into the oscp?
For SOC I will do BTL1 ( Blue Team Level 1) certification. I heard its good and slowly getting more reputation. Hopefully Mr.Madhat makes a video about it in the future.
@@yaqubshaikh6161 Pentesting lol? Baseline, EVERYTHING.
OSCP is extremely diffucult, there is ZERO multiple choice questions. It is completely practical Hacking Cert, you have to Hack.
If it aint ISC2 i dont F with it....well maybe Hack the box😂😂i love hack the box
Why would people still go after this Hacking cert when this organisation were Hacked not so long ago😅😅.
Because HR is dumb dumbs.
Man you are a bit late for me, Inam following a Cybersecurity professional training and CEH is in the middle of it … At least I also have CISSP and Sec+ but I feel like CEH is like a dead weight based on your revelations
I hate this company so bad
Amazing that this cert has so much value in the industry. What a joke.
Bro but OSCP is more expensive than CEH so why are you telling to get that one? OSCP = $1500 While CEH = $1200
CEH is no where near as useful as the OSCP. I would argue OSCP should only cost 800 dollars but it certainly has more value per dollar than the CEH. Also CEH and OSCP are entirely different types of tests. You can compare CEH to Pentest+ which is only 400.
@@madhatistaken so please then tell me one thing Can I get a Red team or Pentester job after doing this OSCP exam? which you recommending.. Because I'm more interested in Red teaming which is offered by CEH cert not in Blue teaming offered by OSCP cert directly, as you said Doing CEH = Pentester or Red Team is a ethical hacker job and Doing OSCP = SOC or Blue team is a Security Analyst job right? And I know you will say No no Pentester Job is not for beginners you first do Blue team SOC then after few years you get Red Team when gain more experience...But Tell me What If doing CEH gives me Pentester Job more sooner Red teaming before even doing Blue teaming part which your OSCP didn't able to give me and handed me a SOC job Blue teaming first later maybe Red Teaming God knows...In this case what will be your answer Huh? If just by doing CEH exam it able to give a Pentester job more sooner than OSCP then You're telling me to Jump in the Well and risk my money by giving a totally Bad and False Recommendation or Advice of going for OSCP instead of CEH.
@@aniketsaha7273 You might be in a region where CEH is regarded highly (outside the US). In the US pen testers laugh at it. OSCP isn't blue teaming as the name itself "Offensive Security Certified Professional" implies offense which is red teaming. It's purely for penetration testing. You can research the certificate more on TH-cam or Google, but most everyone agrees it prepares you for the actual work you'd be doing in a red teaming position.
@@madhatistaken firstly from the region i belong we don't laugh at anything we believe whatever things are in this world is for a reason..apart from that now i understand what you mean is OSCP can give me a Red team or Pentester job i got it, it's just in our side OSCP exam cost is 2x more than CEH where yours is Comparatively low that's why I didn't understand why this difference Doesn't seem fair right? Also wanted to go for OSCP but financial issue araised.
@@aniketsaha7273In India companies prefer CEH . Better, should do 2 certs from this list CEH, comptia security+ and ejpt. (ejpt and comptia not costly). Later better try to get intership through this u will land job easily.
Then aft do oscp in some condition companies will pay ur cert amount. Oscp is bit hard exam not only about money. Don't get tool by youtubers.
It's vary in USA companies prefer comptia, google,oscp etc certs because these bitches either India or any country they have tie up regarding $$$$ on certs.
ceh - trash
Cybersecurity in general is a scam, some people are just lucky enough to be in on the grift.
Lots of people in the industry who want to sell you something, or let you in on some industry secret, or giving you the "tools" you need to get a job RIGHT NOW.
5 years of straight up oversaturation has made this a bit of a joke.
At least Mad Hat hasn't tried to sell anyone on the RED TEAM lifestyle yet and been realistic about what people will actually be doing.
This is the truth they share companies secrets to others for $$$.
I will get OSCP in 2025
Best of luck in your studies! Keep up the learning grind 💚
That's unethical. Wait? Hacking. No. Wait? yeah. Hacking.....is ethical? no. Wait? Man....hack the planet!
Well, if your target is only to pass the exam then he's telling the truth. But instead of focusing on the test itself, CEH does provide lots of useful information and hands-on experience for those who want to start a career in pen testing.
That's a lot of money to spend for information that's widely available for free. As for hands-on experience, there are good cyber ranges out there for a fraction of the price.
@@CubensisEnjoyer my company pays me for it, so doesn't really matter. XD
I have joined CEH Classes for almost $550 in india
Where did you joined?
@@nospaceo outside Thane station there are multiple classes
Hmm 🤔
I can’t comment on the content or methods because I am one of those ladies- as one of your followers very astutely referred to, with a non IT (thus, awfully irrelevant) degree who can barely knows how to switch on a laptop. (*Note- fucking really, mate- whoever you are and wrote that comment?)
The accusations may or may not have been a smear campaign to discredit this company and devalue their certificate.
As for being ethical turds… there isn’t much ethics in the IT industry, either. Who is ethical, really? The software companies? The pen testing companies? Everybody sells security and would shrug their shoulders if a small charity, for example, had out of date equipment and software and not have funds for software updates or other security measures. Show me the money or I will leave you at the mercy of hackers and other malevolent actors acting legally. No?
True!!! kkkkkkkkkkkk
So I think I am begrudgingly going to end up getting it. I think its trash, I think the company is trash.
So why get it? Indeed "CEH 1769 jobs" "OSCP 869 Jobs" "Pentest+ 218 Jobs" "PNPT 18 Jobs"
At the end of the day, Jobs talk.