Exclusive British infosec biz NCC Group has admitted to The Register that its internal training data was leaked on Github after folders purporting to help people pass the Crest pentest certification exams appeared online.
The documents, posted to the cloudy code shack by an account set up last month, were held in a folder marked "cheatsheets". They appeared to be a collection of exceptionally frank and well informed training materials.
An NCC-branded "solution" from the Github "cheat sheet" repo. Click to enlarge
The docs offered step-by-step guides and walkthroughs of information about the Crest exams. One file, called notes.txt and no longer available on Github, included the line: “clone of the app exam so u can pass 1st time” adding “speak to your line manager or AD first to boo ..
Support the originator by clicking the read the rest link below.
