November 9, 2024 by @DKob
Here’s my review (+ My notes and Cheat Sheet) of the eCPPTv3 exam and how I successfully passed it just 40 days after the eJPTv2.
Table of contents
By the time I took the eCPPTv3, I had already completed the eJPTv2 and the Junior Penetration Testing Path on TryHackMe. This background gave me some familiarity with penetration testing and cybersecurity overall.
The training provided by INE for this certification is insufficient for passing the exam. Unlike the eJPTv2 course, this course has numerous gaps and lacks depth in certain subjects, particularly Active Directory. While the PowerShell section is adequate, much of the course is delivered in a slow, monotonous tone, which may make it feel less engaging. (Very boring, to be honest.) However, insufficient coverage doesn’t mean it’s an easy course. The curriculum includes advanced techniques, and the PowerShell section, for example, assumes familiarity with Object-Oriented Programming (OOP). The same applies to other topics, such as pivoting; advanced techniques are discussed without covering the basics. This approach is understandable for a professional-level certification, but it's worth noting that while the content may not fully prepare you for the exam, it’s challenging—especially if you’re new to AD pentesting and privilege escalation.
In summary, as of the date of this article, the following sections in the eCPPTv3 course are not included in the exam:
However, I highly encourage you to review these sections, as topics like assembly, client-side attacks (e.g., VBA macros), and C2/C&C remain highly relevant and widely used today. If you’ve paid for the course, make the most of it—these are valuable skills to have on your resume, so don’t skip them.
Here’s what you’ll need to supplement the INE course: