HackTheBox Nominated for Cybersecurity Excellence Award

- The Cybersecurity Excellence Awards is a program where winners are selected based on the strength of their nomination and a popular vote by the cybersecurity community, with past winners in training categories including Red Education and INE Security. - Founded in 2017 by Haris Pitsos, Aris Zisis, and James Hooker, HackTheBox aimed to provide a hands-on, gamified approach to cybersecurity education to address the gap between theoretical knowledge and practical skills. The company has since raised a total of $70 million in funding over four rounds. - For entry-level penetration testers, employers often look for certifications that establish a strong foundational knowledge, such as CompTIA Security+ or PenTest+. However, for roles specifically in penetration testing, the Offensive Security Certified Professional (OSCP) is widely considered the industry's gold standard due to its rigorous, hands-on 24-hour exam. - While certifications are important for passing HR filters, hiring managers for junior penetration testing roles prioritize a candidate's ability to demonstrate a genuine passion for security through personal projects, home labs, and community involvement. Resumes should emphasize hands-on experience with tools like Metasploit and Burp Suite and an understanding of methodologies like the OWASP Top 10. - HackTheBox is often compared to its competitor, TryHackMe; the latter is generally considered more beginner-friendly with its structured, guided learning paths, while HackTheBox is favored by intermediate to expert users for its realistic, unguided challenges that require independent problem-solving. - A recommended learning progression for aspiring penetration testers is to start with the foundational, guided paths on a platform like TryHackMe to build core skills before moving to HackTheBox to validate those skills against more complex, real-world scenarios. - The Offensive Security Certified Professional (OSCP) is a highly respected and challenging certification that requires candidates to attack and penetrate live machines in a 24-hour practical exam. Due to its difficulty and focus on real-world skills, it is a significant differentiator for employers. - When building a resume for a junior penetration tester role, it is crucial to translate technical skills into business impact. For example, instead of just listing that you found a vulnerability, quantify the achievement by explaining how it reduced the company's attack surface or prevented a potential data breach.