+ Reply to Thread
Results 1 to 14 of 14
  1. Member
    Join Date
    Feb 2017
    Location
    Washington
    Posts
    56

    Certifications
    CEHv9, OSWP, eJPT, A+, Security+, Linux+, LPIC-1, CCENT, Linux Essentials
    #1

    Default GPEN Practice Test Score

    So I bought a GPEN practice test to gauge how difficult I felt the exam would be. I ended up scoring a 67% which I understand isn't passing, but for having not taken the course I felt pretty good about it. I did reference some cheat sheet material for some specific commands, but the majority of the test I did based of my actual pen testing knowledge.

    So my question is whether it would be worth the money to challenge the exam or not? Of course I would study a lot more on the exam objectives before even considering attempting the exam but I felt really comfortable with the bulk of the material. I guess I'm worried about whether the cert will have enough ROI to justify the price of the challenge.

    If anyone has advice I love to hear more experienced opinions.
    Reply With Quote Quote  

  2. SS -->
  3. Junior Member
    Join Date
    Sep 2015
    Posts
    12

    Certifications
    GNFA, GCIH, Sec+
    #2
    While that's a good score considering you went in without books nor studied in the first place.. I'd say the RoI shows more toward OSCP (considering you already have OSWP, so might as well complete the set

    SANS is really more about the experience of taking the course, that's where the true value is. Challenging the exam is worthy if you aiming for a specific job that only THAT cert will fulfill OR if you trying to fulfill the requirements for GSE. Besides those two reasons, I honestly don't see a real RoI for just challenging the exam without taking the full experience of taking the course.
    Reply With Quote Quote  

  4. Completely Clueless TechGromit's Avatar
    Join Date
    Oct 2015
    Location
    Galloway, NJ
    Posts
    1,324

    Certifications
    A+, Network +, GSEC, GCIH, Lunatic+
    #3
    So you missed by only 7% with no studying or reference materials. I'd go for it, see what areas the test says your weak on and get material to will fill in your knowledge gaps. If you get other books, there really no reason you couldn't index those. Even alphabetic cheat sheet covering a board range of topics would be valuable.
    Still searching for the corner in a round room.
    Reply With Quote Quote  

  5. Are we having fun yet? UnixGuy's Avatar
    Join Date
    Mar 2008
    Posts
    3,350

    Certifications
    GCFA, eJPT, RHCE, Solaris 10, SNIA SCSP, Security+, Server+, ITILv3, CCNA (Expired)
    #4
    Agree than OSCP has a much better ROI, so do the OSCP and eCPPT if you can.

    your GPEN score is impressive, so I'd be tempted to just study the objectives hard and take the exam...SANS certs look impressive on the CV that's for sure!
    Goal: GCFA (DONE), GPEN
    Reply With Quote Quote  

  6. Senior Member
    Join Date
    Dec 2015
    Location
    Philadelphia, PA
    Posts
    101

    Certifications
    GREM, GPEN, GCFA, GCIH, GSEC, GCFE, ACE, MCSA
    #5
    I think OSCP is probably a better option. The skills you'll learn are much stronger than GPEN. The cost is also a lot less. If you're determined to go after GPEN I can tell you that I scored 79 on the exam after scoring in the 90s on both practice exam.
    Reply With Quote Quote  

  7. California Kid JoJoCal19's Avatar
    Join Date
    Mar 2009
    Location
    Jacksonville, FL
    Posts
    2,338

    Certifications
    CISSP, CISM, CISA, CRISC, GCIA, GSEC, CEHv8, CHFIv8, ITIL-F, MSISA, BSBA
    #6
    Wait, you can purchase just practice tests by themselves? I never knew that. I'm looking to challenge a couple of the GIAC certs and I would love to take a practice exam to gauge if I should even buy the attempt.
    Have: CISSP, CISM, CISA, CRISC, GCIA, GSEC, CEHv8, CHFIv8, ITIL-F, BSBA - University of Florida, MSISA - WGU
    Currently Working On: MS Cybersecurity, Learning Python
    Next Up:​ None
    Reading:​ Python Crash Course
    Reply With Quote Quote  

  8. Member URG_PSH_FIN's Avatar
    Join Date
    Apr 2013
    Posts
    30

    Certifications
    CEHv7, CISSP, MCSA 2012, GSEC, GCIA, GCIH, GCWN, GCFA, GPEN
    #7
    MS in Information Assurance - Regis University

    2017 Goals - [Pending Scheduling] GSE Written
    2018 Goals - [ ] GSE Lab [ ] OSCP Enrollment
    Late 2018-Early 2019 Goals: [ ] RHCSA [ ] RHCE
    Reply With Quote Quote  

  9. Senior Member E Double U's Avatar
    Join Date
    Apr 2014
    Location
    The Netherlands
    Posts
    1,156

    Certifications
    CISSP, CISM, GCIA, GCIH, C|EH, and more.
    #8
    @ airzero - skip GPEN and knock out OSCP.
    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
    Reply With Quote Quote  

  10. Member
    Join Date
    Feb 2017
    Location
    Washington
    Posts
    56

    Certifications
    CEHv9, OSWP, eJPT, A+, Security+, Linux+, LPIC-1, CCENT, Linux Essentials
    #9
    I just haven't had the time to finish up OSCP due to work, and I won't have the time or internet access for next few months to committ to it due to work. My job will pay to challenge GCIH so if i knock out that and then pay for GPEN would it be worth it to help get me into a security role? I will eventually get OSCP, my hands are just tied at the moment due to work.
    Reply With Quote Quote  

  11. Completely Clueless TechGromit's Avatar
    Join Date
    Oct 2015
    Location
    Galloway, NJ
    Posts
    1,324

    Certifications
    A+, Network +, GSEC, GCIH, Lunatic+
    #10
    Quote Originally Posted by airzero View Post
    I just haven't had the time to finish up OSCP due to work, and I won't have the time or internet access for next few months to commit to it due to work. My job will pay to challenge GCIH so if i knock out that and then pay for GPEN would it be worth it to help get me into a security role? I will eventually get OSCP, my hands are just tied at the moment due to work.
    The obvious question here is if you don't have time for the OSCP now, why do you think you'll have the time for the GCIH or GPEN later? So a work project is taking over your life? While I can understand working a few extra hours to complete a project, you should never allow an employer to work you 60+ hours for weeks / months on end. Because it's never one project, my bet is management is already lining up your next project with unrealistic deadlines once this project is over. If your working more than 50 hours for more than 2 or 3 weeks, I'd put your foot down and tell your employer they need to either adjust there schedule, hire more help or look for someone to replace you, cause your not putting up with being worked to death, which they will happily do if you let them.

    I just look up your linked-in profile, since your in the Military, apparently they can work you to death, good luck, but I would never put up with too many hours in a civilian job.
    Last edited by TechGromit; 10-21-2017 at 02:34 AM.
    Still searching for the corner in a round room.
    Reply With Quote Quote  

  12. Member
    Join Date
    Feb 2017
    Location
    Washington
    Posts
    56

    Certifications
    CEHv9, OSWP, eJPT, A+, Security+, Linux+, LPIC-1, CCENT, Linux Essentials
    #11
    Where I'm going to be working for the next few months has a testing center so I could take the GPEN and GCIH exams, but with the work scheduling and unreliable Internet access it would be difficult to practice for and attempt OSCP while there. That's the main reason I'm considering challenging them.
    Reply With Quote Quote  

  13. Senior Member xxxkaliboyxxx's Avatar
    Join Date
    Dec 2013
    Location
    Austin, Texas
    Posts
    422

    Certifications
    GCIH, C|EH, Sec+, eJPT, SCCC
    #12
    He's deploying
    Studying: LFCS
    Reading
    : Python Crash Course
    Upcoming Exam: GWAPT

    https://realworlditsecurity.wordpress.com
    Reply With Quote Quote  

  14. Member
    Join Date
    Feb 2017
    Location
    Washington
    Posts
    56

    Certifications
    CEHv9, OSWP, eJPT, A+, Security+, Linux+, LPIC-1, CCENT, Linux Essentials
    #13
    Tried to not outright say it but yeah I'm deploying.
    Reply With Quote Quote  

  15. Senior Member xxxkaliboyxxx's Avatar
    Join Date
    Dec 2013
    Location
    Austin, Texas
    Posts
    422

    Certifications
    GCIH, C|EH, Sec+, eJPT, SCCC
    #14
    Quote Originally Posted by airzero View Post
    Tried to not outright say it but yeah I'm deploying.
    Just don't write specifics and your opsec is good to go.
    Studying: LFCS
    Reading
    : Python Crash Course
    Upcoming Exam: GWAPT

    https://realworlditsecurity.wordpress.com
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks