Penetration Testing mailing list archives
RE: GCIA, GSEC, GCIH, CISSP, CEH ???
From: "Ferris, Joe" <jferris () admin fsu edu>
Date: Thu, 20 Dec 2007 10:24:38 -0500
I must disagree with the "only three sources for pen test related certifications." I have taken SANS courses with Ed Skoudis (GCIH) and Chris Brenton (GCFW) and they both cover in-depth pen testing ideas, concepts, examples, strategies and much more. I have reviewed the CEH course and believe that the GCIH covers all of that material and more. The GCFW course covers portions of the CEH course (GCIH as well) and then issues, configurations, ideas, concerns that are outside of CEH scope but still critical for pen testing. Learning from the authors of the actual course material is another added credible benefit to the SANS courses that is hard to duplicate. Security 560 :: Network Penetration Testing and Ethical Hacking "When teaching the class, I particularly enjoy the numerous hands-on exercises culminated with a final pen-testing extravaganza lab. -Ed Skoudis" It looks like GCEH is offered in 2008. Joe Ferris
-----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Walter Cuestas Sent: Thursday, December 20, 2007 12:21 AM To: pen-test () securityfocus com Subject: Re: GCIA, GSEC, GCIH, CISSP, CEH ??? Just to say that every comment about CEH seems to be based on versiones previous to 5 (some comments seems based on books from EC Council and 2 others that are so far from current EC Council material). Today, CEH is the start point and next steps for people who wants to demonstrate their knowledge and expertise, thtrough certifications, are ECSA and finally get LPT (if you need this one). Since the first mail of this thread, I have reviewed every syllabus, exam topics, exam and labs demos, training videos and so on. IMHO, there are just three sources for pen test related certifications : EC Council, ISECOM and Mile2 (based on CEH). SANS has a lot of certifications that are good complement for CEH, OPST, OPSA, CPTS and CPTE, but, I can't find an specific pen test certification from SANS. Also, as all of you know, there is no certification neither a set of exams that really demonstrate the actual knowledge of people. These certifications are just a complement for a professional career. BTW, I have reviewed some of the recommended training based on videos and they seem to be just BackTrack courses. http://www.cenzic.com/downloads
-----------------------------------------------------------------------
-
------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
Current thread:
- RE: GCIA, GSEC, GCIH, CISSP, CEH ???, (continued)
- RE: GCIA, GSEC, GCIH, CISSP, CEH ??? Shenk, Jerry A (Dec 18)
- RE: GCIA, GSEC, GCIH, CISSP, CEH ??? Bryan Pitts (Dec 18)
- Re: GCIA, GSEC, GCIH, CISSP, CEH ??? Cristian Serban (Dec 18)
- Re: GCIA, GSEC, GCIH, CISSP, CEH ??? Jamie Riden (Dec 18)
- Re: GCIA, GSEC, GCIH, CISSP, CEH ??? Robin Wood (Dec 18)
- Re: GCIA, GSEC, GCIH, CISSP, CEH ??? Pete Herzog (Dec 18)
- Re: GCIA, GSEC, GCIH, CISSP, CEH ??? Danux (Dec 18)
- RE: GCIA, GSEC, GCIH, CISSP, CEH ??? Ardian Silvano (Dec 18)
- Re: GCIA, GSEC, GCIH, CISSP, CEH ??? mgk.mailing (Dec 19)
- Message not available
- Re: GCIA, GSEC, GCIH, CISSP, CEH ??? Walter Cuestas (Dec 19)
- RE: GCIA, GSEC, GCIH, CISSP, CEH ??? Ferris, Joe (Dec 20)
- Re: GCIA, GSEC, GCIH, CISSP, CEH ??? Cristian Serban (Dec 20)
- Re: GCIA, GSEC, GCIH, CISSP, CEH ??? Jim Clausing (Dec 20)
- RE: GCIA, GSEC, GCIH, CISSP, CEH ??? Chadha, Sachin (Dec 23)
- RE: Re: GCIA, GSEC, GCIH, CISSP, CEH ??? Erin Carroll (Dec 18)
- Re: Re: GCIA, GSEC, GCIH, CISSP, CEH ??? infolookup (Dec 19)
- Re: Re: GCIA, GSEC, GCIH, CISSP, CEH ??? xelerated (Dec 19)