[ifoundthetao]

100% agreed

I love Pentester Academy. I've had a subscription to it for the last year or so.

And OffSec is nice, too. I've got OSWP, OSCP, OSCE, and I'm in the Black Hat training this year for OSEE. So we'll see how that goes. I haven't tried their On-Prem labs though, but I think they'd be pretty fun.

[sogubsys]

I've browsed a few times the assembler courses on Pentester Academy. I'm not sure I'm up for being a pentester but I do like the particulars of assembler and CPUs.

Would you recommend those courses in particular (looking as amd64 and arm ones)?

[ifoundthetao]

Yep, they're great courses. Make sure you actually do it.

Vivek is an excellent instructor, and he goes from nothing to getting you up to speed pretty quickly.

The first parts might be a bit dry, because it's a lot of architecture and theoretical stuff. But after you get through that, and start doing things, you'll find that it's awesome.

Also, if you don't want to be a pentester, you might find a particular affinity for exploit development. And that's a niche field that pays well. That's where I'm going with my training, research, job. Not easy, at all, but it's deep, and fun.

[rishabhd]

Absolutely agree! Vivek's ASM tuts are amazing. Additionally, Nikhil's red team lab is highly recommended.

[sogubsys]

Will check that one out. I only have a rough idea of what a red team is (abstract, some books, etc), but no practical experience with it.

[sogubsys]

Thanks for that recommendation and advice, I appreciate it. Yeah, I'd definitely prefer to find and propose fixes for exploits over full pentesting (reporting/client work).

[rishabhd]

Wow! I achieved my OSCP 3 years back, but could never find the time to prepare for OSCE though. Hopefully, I will achieve it one day.