Re: Penetration testing professional certifications

[Vedantam Sekhar <vedantamsekhar () gmail com>]

Hi,

If you are looking for hardcore pen testing course, consider
metasploit's OSCP as well. It is completly practical oriented course
which requires lots of effort from you as well. They'll provide you a
"vulnerable" LAB and and you need to exploit various services by
listening to the material and connecting to lab through VPN. Imagine a
course where you will develop a working bufferoverflow exploit or
write your own shell scripts to ease certain tasks. But i should say
that this course is that it is not as much recoginzed in the industry
like any other courses from SANS, EC-counsil...etc.
I found it more usefull than GCIH which is also somewhat similar type
of course from SANS. I dont know about GPEN but GCIH is an open book
exam and most of questions are striaght forward questions. So, i felt
it is easy pass and get the certification.

Thanks,

Sekhar

On Thu, Aug 11, 2011 at 6:24 PM, sapran <sapran () gmail com> wrote:
> Dear Penetration Testers,
>
> I am looking for advice of an experienced penetration testers
> regarding the certification path to choose. My goal and reason in
> taking a certification exam is not a certification by itself but the
> opportunity to learn from preparation materials, fill the gaps in
> skill set and experience, as well as align the expertise with current
> "best practices" in the field.
>
> I knew about CEH/LPT path from EC Council and SANS's GPEN before and
> I've discovered IACRB's CPT/CEPT lately, however I'm having hard time
> trying to assess them in comparison. I would appreciate any help in
> comparing the subject domains, expected effort and potential benefits
> of these certification as well as those I've not encountered yet.
> Maybe some results are already out there and you could share the links
> to related materials?
>
> Thank everyone in advance.
>
> Best regards,
> Vlad
>
> ------------------------------------------------------------------------
> This list is sponsored by: Information Assurance Certification Review Board
>
> Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
> and CEPT certs require a full practical examination in order to become certified.
>
> http://www.iacertification.org
> ------------------------------------------------------------------------

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------