Penetration Testing mailing list archives
Re: New to INformation Security World Please give your expert advicein this matter
From: Leif Ericksen <leife () dls net>
Date: Thu, 09 Feb 2006 14:38:00 -0600
Well that is a difficult one to answer... I know of a home lab that has some on-line photos this dude has a nice setup.. www.unixwsorks.net If you want to get started in Linux and have an extra PC download a copy of some variant of Linux and start playing with it. Visit your local bookstore and start looking for some books. Oreilly has a nice suite of books, as well as other companies. Look for all books that you can find on computer security, and firewalls. Stay in tuned with this group as well as the other groups that find their home on security focus pay attention to the information on their main web page. Go www.sans.org and read the information they have available there. There is a plethora of information available and you will not get tons of answers to point you in different directions. Another things is try to narrow your focus at first to what interests you the most and try to find as much security related materials as possible. Some book titles you might want to check out... Essential System Administration GOOD book Security Warrior Linux firewalls Different books from the hacking exposed series Get some books on programming (good for reference in code reviews) Red Hat Security and Optimization go to a library and review the CISSP books or Security+ books and see if any of that material interests you. google the term "computer security" Then after reviewing all the material you can decide what you want to focus on build your lab around that and check out E-bay for used servers, routers, switches, and build your lab! My lab is small. 1 Nortel 100BaseT 24 port switch 1 OLD PC running a linux firewall 1 pc running linux or W2K depending on my needs 1 pc issued by the office running W2K whenever I need to access the serves from home 1 link sys 54G router 1 PC running w2k for my kids 1 Zaurus SL7000 when I decide to use it at home 1 fiber switch not at present active 2 older intel boxes collecting dust until I decide what to do with the, I had an HP-K400 but I have given back parts of it to the person that gave it to me in the first place. ( I will never run 220 to where I had it in my basement I do have family members that are electricians so I am not afraid of the power run ) In the near future I wish to ad a system of home security cameras (IP) that will have a web interface that I will wish to add to my network, your results and mileage may vary. On Thu, 2006-02-09 at 13:42 -0500, Aamir Niazi wrote:
Hi everyone, I am a newbie in the world of information security. I have received my MS in Information systems security but have sort of limited knowledge about the practical world. I would appreciate it if someone can give me some advice on where to start as far as practical knowledge goes on personal level like in a home-lab environment, what would I need and where should I start, should I work with Windows cuz that's what I know mostly but I would really want to get some experience with linux and unix what sort of tools should I use that are freely available. And what kind of home lab should I setup I can have up to about 4 to 5 machines what would be the ideal ideal and ideal setup for someone who has no clue about unix and linux. Please advice Your comments will be very much appreciated. Regards, Aamir ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
-- Leif Ericksen <leife () dls net> ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- New to INformation Security World Please give your expert advicein this matter Aamir Niazi (Feb 09)
- Re: New to INformation Security World Please give your expert advicein this matter Leif Ericksen (Feb 09)
- RE: New to INformation Security World Please give your expert advicein this matter Paul Melson (Feb 09)
- Re: New to INformation Security World Please give your expert advicein this matter Ryan Cummings (Feb 09)