eJPTv2 Exam Review (English)

I Passed the eJPTv2 Exam

→First of all, What previous knowledge do you need before taking the exam?

You need to have knowledge in Networks, Linux and Windows. If you don't have any previous knowledge, then the course that comes with the certificate is not enough in my opinion. Lots of subjects in the course assume that you already have knowledge of these subjects. For Windows and Linux, the most important thing is that you know how to communicate with the machine using Command Line. However, you need to really understand Networks, because in the exam you will need to pivot, which is using a hacked machine to go from your network to a remote one, and for you to be able to do this, you need to have a good grasp of Networks. 

If you have a simple knowledge in these subjects, you can begin with the course, and if you face anything new, you can search for it and understand it. But, if you don't have any prior knowledge, I highly recommend taking a course in the subjects that you feel you are weak on.

→How much time do I need to prepare for the Certificate?

This is an important point 😊, the time period will differ greatly from one another. It depends on the person if he has ever solved CTFs, because these challenges give a skill and really help in understanding the course. Also, it depends on how much time you have available for studying, and how much knowledge you have in OSs and Networks. So, my advice is to understand the course really well and don't focus on the time.  

→Is The Course Alone Enough to Solve The Exam?

If it was your first time hacking and you have never solved any CTFs before, I think No it is not enough 😊, it's true that in the exam you will not get any questions from outside the course, but I believe that you need to think fast and organize your thoughts, and these things come with practice. Although the course has more than 100 labs, the majority of them are so simple, and it doesn't give you the speed and the ways of thinking that you will need in the exam. But if you have prior knowledge, then it will be enough InShaaAllah.

I will put links for some labs in TryHackMe, if you solve these labs and perfect it with the labs of the course, You will pass InShaaAllah. Some of these labs are already solved on TryHackMe and show you the steps one by one. The unsolved ones I have already solved and explained in This blog, you can click on the name of the lab, and it will take you to the solution 😊.

• Blue TryHackMe
• Ice TryHackMe
• Blaster TryHackMe
• Startup
• Ignite
• SimpleCTF
• Colddbox: Easy

→The Most Important Thing, How was The Exam? 😊

The exam was okay, Not that simple and Not that difficult, in between, and to be clear, everything in the exam and every solution you will need to pass is in the course, nothing new. 

Begin the exam at a time suitable for you. I started mine on Sunday in the afternoon, So I had the remaining of Sunday, all Monday, and all morning of Tuesday. This time was perfect for me, make sure to choose a time suitable for you. 

The exam time period is enough for you to solve it, so don't hurry and take your time. Even if 24 hours passed and you still didn't get to pivot, don't worry, you still have time to pivot. The most time-consuming thing is "Enumeration" and it is also the most important step. Take your time in it, Take Your Time, collect as much information as you can, use Nmap with -A to collect more info, and use also -vv to see how the scan is going. Use multiple tools to scan the same target, and do everything to collect more and more information. 

It's very very important to take breaks during the exam. Especially if you are stuck, because when you take a break and then go back to solve the exam, you will have a new idea or a new way to solve the exam. However, if you don't take any breaks, you will stick to the way that you decided it would be your solution, and you will be in a rabbit hole without you knowing. You really need to take time away to give your mind a space to think of any other way to solve the exam. 

Take Notes about everything, all the scans, and all the credentials that you obtained and save them on your main machine, because if the lab closes for any reason you will lose everything in there. So imagine how frustrating it will be to lose all the scans that you spent hours doing 🙂. also, make sure to organize your notes, this will make going to them so easy. 

The best advice that I can give you and it is the thing that I really benefited from in the exam is for you to read the questions, all the questions from the beginning of the exam. The questions will really help you and it will organise your thoughts. Every once in a while go back to the question, answer what you know and re-read them, trust me on that 👍🏻.

during the exam, if you tried to gain a reverse shell and it didn't work, try to make it a bind shell, or try to change its architecture, if it was 32 make it 64 and vice versa. Try to change the shell until one works with you. 

In the exam, you will have some questions that ask you to submit a flag. These flags are connected to your current lab environment, and change with every new lab environment. Once you obtain a flag and submit it, it will be compared with the flags of your current lab environment, so do not save a flag and submit it later, once you find it, submit it. You can not change the flag after you submit it, so make sure it is the correct flag, and it will be clear in the question what flag they want, don't worry. 

Finally, if you finished solving all the questions in the exam, use this picture below as a checklist, and make sure that everything in this list is already done. Just so you know, you can solve the exam without doing everything in this checklist, however, you will be evaluated for each point, so it's better to do everything in here. Good Luck to you all, I hope you pass this exam with 100%.