Penetration Testing mailing list archives
RES: CEH program and Sybex Study Guide
From: Fabio Nascimento de Mello <fabio.nmello () totvs com br>
Date: Fri, 30 Sep 2011 11:17:27 -0300
Alberto, The new version 7, have a lot of hands on. The instructor was very knowledgeable. I took that classes last week and I like it! I am studying more now to take the exam. -- Fabio CCSP CCSE CobiT ITIL @fabionm -----Mensagem original----- De: listbounce () securityfocus com [mailto:listbounce () securityfocus com] Em nome de Michael Richard Enviada em: quarta-feira, 28 de setembro de 2011 10:08 Para: Alberto Medina Cc: pen-test () securityfocus com Assunto: Re: CEH program and Sybex Study Guide Hi Alberto, I completely agree with Clement and Bandar. I'm a beginner in infosec too, and recently I passed the Security+ exam. My next step will be the eLearningSecurity certification (eCPPT | http://www.elearnsecurity.com/). Why? Two answers: First, I personally belive that the CEH training don't really prepare you for the job, I come to this conclusion after a brief look at the material (version 6) and after read some reviews on the web. Basicly they cover too much about tools and too little about the technics itself. Second, the OffSec BackTrack is a little bit expensive for me right now, and I don't think I have the knowledge necessary to enjoy the course (is really a badass course :) I think a more hands-on approach will be far more benefic for my learning experience. So, the path I've chosen is this: Sec+ -> eCPPT (eLearn training) -> OSCP (Offsec training) -> OSCE (Offsec training). Here some reviews: CEH - http://www.ethicalhacker.net/content/view/54/24/ eCPPT - http://www.ethicalhacker.net/content/view/307/24/ & http://www.darknet.org.uk/2010/05/elearnsecurity-online-penetration-testing-training/ OSCP - http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/topic,1152.0/ OSCE - http://linuxisp.co.uk/content/ctp Edit: Sending again because the list does not handle MIME messages. [ ]'s Michael Richard @alfarichard 2011/9/24 Alberto Medina <amedinaj () gmail com>
Hi all, I know maybe in this list you have talk a lot about CEH program, but I want to know what do you really think about this program (CEH)? Is this really useful to start in information security? And what do you think about the Sybex Study Guide, by "Kimberly Grave"? I do this question because a couple of years ago I took the CompTIA Security+ exam and passed it, but I wanna to continue the preparation in the field of information security and Ethical hacking, and someone recommended me the "Certified Ethical Hacker" certification as a good way to continue the path, so a bought the Sybex Study Guide for the exam, but I don't see a lot of difference between the content of Security+ program and this one, I thought I'd find the CEH deeper in the subject than Security+ program. In fact, I found this Sybex guide is not very actual, there's not any mention to Windows 7 or even Vista, the tools mentioned are kind of old, in the "cracking password" section they don't talk about rainbow tables, only a littler mention; in the "backdoor" sections she (the author) recommend adding an additional hard disk to the computer and boot from there for protection using the backdoor she mention, or buy a Windows netbook, but it's not better using a VM in for testing? Anyway, I just want to know what you think about this program? If not, what do you recommend for continue the path to Ethical Hacking and Information Security. Thank you and best regards, Alberto Medina (Excuse my English :) ) ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------ ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- CEH program and Sybex Study Guide Alberto Medina (Sep 25)
- Re: CEH program and Sybex Study Guide Clement Dupuis (Sep 27)
- Re: CEH program and Sybex Study Guide Bandar Alharbi (Sep 27)
- Re: CEH program and Sybex Study Guide Michael Richard (Sep 29)
- RES: CEH program and Sybex Study Guide Fabio Nascimento de Mello (Sep 30)
- Re: CEH program and Sybex Study Guide Robert Musser (Sep 30)
- Re: CEH program and Sybex Study Guide Clement Dupuis (Sep 27)