Big thank you to Proton for sponsoring this video. Get Proton VPN using my link: davidbombal.wiki/protonvpn5 // Phillip’s SOCIAL // X / Twitter: twitter.com/PhillipWylie Website: www.thehackermaker.com/ Linktree: linktr.ee/phillipwylie LinkedIn: www.linkedin.com/in/phillipwylie RU-vid: ru-vid.com // Books MENTIONED // The Pentester Blueprint by Phillip Wiley and Kim Crawley amzn.to/41N5CBl The Hacker Playbook by Peter Kim amzn.to/40LvInc The Hacker Playbook 2 by Peter Kim amzn.to/3oVemqr The Hacker Playbook 3 by Peter Kim amzn.to/40SjokN The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws by Dafydd Stuttard amzn.to/3oLN5Xv Hacking API’s by Cori Ball amzn.to/3Hi5amj Penetration Testing A Hands-On Introduction to Hacking by Georgia Weidman amzn.to/3Hi5zF RTFM (Read Team Field Manual) by Ben Clark and Nick Downer amzn.to/3Vf0XWs Operator Handbook Red Team + OSINT + Blue Team by Joshua Picolet amzn.to/41JTQYH Black Hat GraphQL by Nick Aleks and Dolev Farhi: amzn.to/47I8zpT // Videos MENTIONED // Pentester Blueprint: Your road to success: ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE--FjL8y3B08k.html Free Hacking API course!: ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-CkVvB5woQRM.html // RU-vidrs mentioned // Rana Khalil: www.youtube.com/@RanaKhalil101 Profesor Messer: www.youtube.com/@professormesser She Networks: www.youtube.com/@shenetworks Tib3rius: ru-vid.com // David's SOCIAL // Discord: discord.com/invite/usKSyzb X / Twitter: twitter.com/davidbombal Instagram: instagram.com/davidbombal LinkedIn: www.linkedin.com/in/davidbombal Facebook: facebook.com/davidbombal.co TikTok: tiktok.com/@davidbombal RU-vid: www.youtube.com/@davidbombal // Menu // 00:00 - Coming Up 01:51 - Sponsored segment 03:35 - Intro 04:11 - Blackhat 06:43 - Try Hack Me / Hack The Box 08:35 - Roadmap in 2024 14:30 - Do You Need Certifications? 18:07 - Problems Getting a Job 20:16 - CCNA or Network+? 23:34 - Certifications & Degrees 27:43 - Roadmap for Developers 30:33 - Using BugBounty for Experience 32:40 - What Should you Focus on in 2024? 36:12 - A.I in 2024 41:12 - Modern Day Opportunities 42:02 - Books For 2024 44:58 - Last Advice 50:03 - You're Never Too Old 52:14 - Different Roles 54:00 - Phillip's regrets 57:33 - Outro // MY STUFF // www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com pentest pentester hack hacker hacking ethical hacking ethical hacker course ethical hacker Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! Disclaimer: This video is for educational purposes only. #hacker #pentester #hack
Bro what are your comments on the job market nowadays? It seems so much saturated and people can't get even entry level jobs, how to bypass this @@belhamadiawalidd
I work with Phillip on our security team. What a great guy. Love learning from and working with him. Been following this channel for a long while and its always cool to see you two interact. Lots of great knowledge in the same room.
As someone switching careers in my 30s this interview really spoke to me. Phillip's insights, particularly as an older gentleman, were exactly what I needed to hear to stay motivated. Thank you both so much!
30s! Calling yourself an older gentleman is the wrong mindframe! I’m in my 30s and I’m learning more than I ever did in me teens/early 20s this is when we realise life isn’t about age but about what we want to do as a passion. Limiting yourself by age is giving you an excuse to limit yourself when things get tough
Hi, I'm from Kenya and I love this weekly classes by David. I wish I had such information back in 2015 after finishing high school....But now that I am here I'll take what I can as fast I can. Visit Kenya someday David.
Great video!! I’m going to follow this road maps this is what I want to do, as a 30 year old in need of a career change. (I have been doing physical labor and body is feeling it). Thanks for the great guests, and even more so the inspiration you bring that a 30 year old man can make the changes into this field. This will be no easy feat but I’m very dedicated to make a change. I truly believe finding your videos has been the blessing I needed.
I was in the same boat bro, years of physical labor in the warehouse. I studied for about 8 months and in that time got my security + and CC , applied to some security analyst positions, had like 10 rejections and 3 interviews and finally got an offer just last week. I promise you if you put your all into it you will achieve your goal. Good luck
@sadasow2670 that’s awesome to hear!! Congrats on getting the job. I am still working but trying to put in the time at night and on the weekends. I’ve made mistakes the last decade but willing to work hard to get into something I enjoy. Thanks for the response that gives me inspiration
@sabutdasow2670 but nowadays literally every field is flooded with candidates and so much saturation! Everyone is saying they aren't getting jobs, its just depressing lol, feels like the world is ending for our generation
That was a very smooth, very informative video. David david, you're great at this. I really do appreciate your videos even though I'm still struggling in myself. Trying to really discipline myself into the morning. But you do a great job. Excellent, thank you so much.
I appreciate that! Just try to improve 1% every day and you'll be amazed how much you can accomplish in a year. And don't worry if you stumble. The important thing is to get up and try again.
Hey David, your interviews are incredibly informative! I've watched most of them and gained valuable insights. Could you explore the topic of the value of pursuing a master's or PhD in one of your future discussions? I'd love to hear your perspective on whether it's worth it.
I'm 28, had a nack for tech for almost a decade now, never tried putting any of what i know to use and never truly tried to learn more, until now but i feel so far behind, like i'm too old to start now because by the time i get 10+ years on my belt, i'd already be nearing 40 lmao but watching this video today really changed my mindset and perspective so i appreciate the time you put into this and for sharing.
I started watching your videos recently and I find they are valuable resources to get into cybersecurity as a newbie ❤ Looking forward to more amazing content.
It was a good video, thanks for the advices Philip. But i still have something to say: i have my OSCP since months mow and i've applied for pentester jobs here in France and i have 0 jobs interviews so far. Everybody keeps telling that OSCP is the way and somehow it does not work for me yet :(
maybe i am wrong but i think that Philip is the first one who talks about learning assembly language if you want to get into pentesting. Really interesting skill!!
I don't now. I went to school for programming back in the day when you were lucky if you got 2 disk drives to do the floppy shuffle. Machine and assembler languages were tough back then. I can only imagine what it's like now. I was way better at C++. Still, if you don't use it, you loose it. And we had compilers. Ugh. No "environments". You wrote the code then you had to compile the program. You had to debug it yourself and hope "trace" or "debug" helped you.
David, that was a really good video. Thanks! Phillip seems like a genuinely good guy who's passionate about what he does. I learned a lot, and the last part really hit home for me.
Phillip why do you have a P51 Mustang on your wall? My dad flew those in China. He was with the Flying Tigers during WWII. I'm just always curious when I see one. That growl that the Rolls Royce Merlin engine with the four blade propeller was pretty unique. Anyway just interested to see that.
Hi David, I understand most of the people you invite on your channel are usually from the IT world, I would be very interested to see someone from the OT or ICS (Industrial Control System) world. I am looking to get into OT Penetration Testing, while currently working as an OT Cyber Security Engineer, and would love to get introduction to the Controller (or PLC) pen-tests, a path for OT Security Enthusiasts and in general security in the industrial world.
hi from trinidad and tobago i just wanna thank you for your videos you get me into writing python programs i don't miss a video that you put out i write a software to find bug in web site i will love to know what you think about it
Hi David another great video again! I moved into cybersecurity from a completely different industry and passed my ccna exam last week. Now the question in my mind is which certificate should I focus on, because the majority of such videos say "Which certificate should I get, CEH, OSCP or eJPT?" and the content of the videos contains information about how the exam is. However, I don't know what kind of job I should apply for after receiving one of these certificates. I think it would be helpful if there was a video about all job areas that could work in the field of cyber security.
Get CompTIA Security+ exam first. This certification validates your baseline skills in cybersecurity. To get career into cybersecurity, this is the recommendation.
Hello David, I recently started following your content, and I'm really enjoying what you're providing. Your teaching style, explanations, and words always keep me enthusiastic about learning. Thank you. I would like to ask you a question. After completing the CCNA course available on your RU-vid channel, does it qualify me to move on to the CCNP course that you also offer on your channel?
I have absolutely 0 experience. GpT has accelerated my learning 10x. Started python and all I do is carry on a dialog with it asking questions as I work through the material it tailored for me to learn it.
@davidbombal Is there a path into cybersecurity for a 50 yr old Truck Driver with a 24 yr old felony conviction that has an AS degree in computer science and Networking. (From 1998) currently working through HTB Academy Fundamentals.
Could you make an episode about the bad and the ugly side of security jobs. Like... all that boring stuff, Incident responses, routine, bureaucracy, personal danger, risks, etc, etc.. All that ugly stuff you usually don't talk about.
At least in the US market, the entry level is FLOODED with candidates. Without recent IT work experience you're probably starting in a help desk or field tech. role at best.
Bro its just so demotivating lol literally every field nowadays is so much saturated, entry or intermediate every level is full of candidates, I'm just thinking of how we gonna end up in this situation.... The world is ending for our generation lol
Hello everyone😁 I am from Canada and i would to find any hackers groups in Toronto, Canada? which i am have very hard time to find. I am complete beginner and i m working on Google cert and than Sec+. And i am really interested in network Security and i am lost with all the different certs. Any advise would be greatly appreciated.
Hi David. This may sound weird. But can you make a video of different price points to invest in educational material and certs.. so let's say best training(courses, books, certs) under $1000 and maybe under $2500 or more) as a beginner how can get the best value from those price points assuming I only hand that to spare. Ofcourse this will then depend on your area of focus, that is offensive vs defensive but I think could help
Dear Sir, Big fan here! I've watched all your amazing videos. Could you please consider making a video on MITMA and HTTP snifing? Your insights would be greatly appreciated. Thank you!
David sir, can you do a video and consider people for 3rd world countries? Security jobs are open in good countries but in some countries you'll see people with PNPT, OSCP, eJPTv2, CPTs all together or individually either in Uni or just finishing uni and this people are jobless or being exploited by some companies, what's your advice sir
if i have knowledge of a course but don't have certificate can i mention that course as a skill in my resume and will it help me to get job ? i can ask interviewer to check my skills instead of certificate.
so, now you don't only need certs, a degree and experience to get a job in cyber, you also need a blog, a youtube channel, present your research or what you do at conferences ... that's why i quit cyber, fuck it, i rather spend my time putting a business and at least make money and do other things that i want.
Hi sir I am yoonus a student.I study at Cisco network academy skills for all cyber security career path.sir, this course is Worth or not please explain it
The path is usually: network foundations+linux and OS foundations+security foundations, then proceed to advance stuff. The course yu have mentioned in cisco netacad and skills for all will help build the fundamentals. They are introductory/fundamental knowledge that yu will build on. My take.
i dissagree with the apprenticeships . the people securing our countries ifrastructure and businesses should be the top of the top . the ones that had the motivation to do bug bounties and create a portfolio etc.. not someone who needs their hand held . we are in a cyber world war right not it is not the time to lower the barrier of entry . thats like saying that everyone doing the navy seal admissions test should get a personal trainer . nope make sure only the most motivated people are staying and weed out the people doing it just for the money .
So the PenTest is about remembering a structured way of hacking and known vulnerabilities, but it is really a joke because old school hackers don't use any of those methods except Nmap. My experience is looking for the unknown and taking everything apart piece by piece to find a way through it. Yeah, the methods do work that they teach, but that is exactly why I would never use them and look elsewhere. A lot of time and money for a test and badge that is worthless to an old school ethical hacker.