PJPT 2023: Begin your Career

Astik Rawat
6 min readJun 14, 2023

Heyy! How have you been? Hope you’re doing amazing as ever. After getting appreciated and requested by my fellow cybersecurity peers, I want to share my views and review on Practical Junior Penetration Tester (PJPT) from TCM Security. I also want to thank everyone for their support that I want to do it without any delay so people can read my review, understand the exam requirements and go for the exam. Also my appreciation towards everyone on TCM Security for their support. It might be the first public review on PJPT so guys lets go for this and pass it together.

PJPT: Early Adapter

Let’s not waste time and get straight into it and Yes, I am an earlier adapter of PJPT. :))

What is PJPT?

This is a junior penetration testing exam for someone who wants to get started into Pentesting jobs including having Active Directory knowledge. This one is a good start if your main goal is to understand real-world testing on an AD Environment. It is all Internal testing, so you don’t need any pivot of such. Exam is for 2 days and you get 2 more days for reporting. TCM Security recommends you to finish Practical Ethical Hacker course (PEH) and I can confirm everything you learn from it can be used to pass.

Things to remember before you start

Real-World Engagement != CTF : If you have read my PNPT review you might already know by now. But no worries, I will cover everything here too. So basically, keep it simple and like a real testing. You are not expected to run stegohide tool to get flags on TCM troll images as this is an simulation of real world testing. So look for what things does lazy people like us do…?? Yep, whatever came to your mind can be a potential way in.

PJPT’s J sounds for JUNIOR: Keep in mind this exam is not here to challenge you on your hardcore chaining multiple exploits to move a small step. This exam is supposed to be as simple as it could be when comes to AD testing and understand the environment. If you just stick with the basics and perform whatever you learnt from the coursework, you will pass in your first attempt.

Overall: I can say almost everyone can pass it on their first attempt and even on their first day if they just stick with keeping it simple and coursework. There might be some chances…

--

--

Astik Rawat

Security Consultant | OSWE | OSCP | OSWP | CRT | BSCP | PNPT | eMAPT | PJPT | CPENT | eJPT | CEH Master | CPSA | Network+ | Multiple CVEs