RE: CEH training

["Richard Zaluski" <rzaluski () ivolution ca>]

The issue we find with these courses is that they tend to be encyclopedic in
nature.  They teach you how to 'hack a box' rather then provide you with the
skills a professional security tester needs.  

iVOLUTION currently has two Penetration Courses that we teach at IBM, its
security staff and worldwide partners. Our classes are based upon the skills
you need to become an efficient and resourceful security professional

There are a few good courses out there that deal with Penetration Testing,
not just ours. I would look for classes that deal specifically with Pen
Testing rather than 'hacking' 

There is much more to being a pen tester than hacking. It's knowing the
tools, techniques, methodologies and resources as well as understanding how
to research exploits and properly assess networks and target systems. This
is in conjunction with understanding the legalisms associated with testing
that varies greatly in different countries, states, provinces and regions.

As for online courses of this nature, I have not seen one as yet but I do
understand time is an issue in your case.

Regards, 

Richard Zaluski
CISO, Security and Infrastructure Services 
iVOLUTION  Technologies Incorporated
905.309.1911
866.601.4678
www.ivolution.ca
rzaluski () ivolution ca
 

Key fingerprint = DB39 7FC3 1F5D AD94 85DD  78B0 774D 5DE5 B011 BD8C
=======================================================================
CONFIDENTIALITY NOTICE: This email message, including any 
attachments, is for the sole use of the intended recipient(s) and may 
contain confidential and privileged information. If you are not the 
intended recipient, please contact the sender. Any unauthorized review, 
use, disclosure, or distribution is prohibited.
=======================================================================

-----Original Message-----
From: glemmon () onealwebster com [mailto:glemmon () onealwebster com] 
Sent: Tuesday, June 21, 2005 2:35 PM
To: pen-test () securityfocus com
Subject: CEH training

Hi all,

I am looking at getting some training to start my official journey down =
the path as a Security Penetration Tester - and was wondering about the =
views on taking the Intense School's CEH boot Camp. Has anyone on/from the
list attended their course and have and feedback/recommendations? My =
background is predominantly Windows, but I am fairly functional with Linux.
I am more interested in online courses right now though only because I am =
currently involved in some projects that require me to be available for my
office = over the next couple of months. Any constructive feedback is more
than = welcome.
Thanks


Gregory Lemmon, MCP, Security+
I.T. Manager