I wonder if the "Beta" sign was on it before Google snapped it up.

Could be an idea to download real apps the have known vulns and install them. phpVBB seems to have a long history of vulns, might be an idea to start there?

There's also the Damn Vulnerable Linux distro that has some tutorials and  specially written apps, and de-ice (which I'm currently looking at so couldn't tell you more...)

HTH

Chan

Ok, so you need to:

prompt for the radius
do some basic maths
output the result.

Nearly all of which would be included in any basic c++ tutorial online (and, at a guess, in the class you were given the assignment in?).

I know it been said before, and at the risk of sounding like a broken record, google is your friend. It's very unlikely you'll find anyone here to do your assignments for you.

Is this due to the (very smart) clause the L0pht guys added to the contract with Symantec, that if LC didn't see a major release for X years it fell back to the control of L0pht and Symantec basically lost the product? (I'm sure I heard this).

Can't tell if that would mean they've been working on this for a while and there's going to be major changes & feature improvements, or someone in legal going "I've not see this date before, I wonder what it is? OH SHI-" followed by some minor changes and the marketing dept put on high alert.

I'm hoping it's the first.

Since you posted this in Web Applications, and  if timmedin can stretch to another CD, may I suggest a Samurai WTF disk too? (Samurai is another pent test CD, but more webby)

You can under certain circumstances get an exam only pass from EC Council. You'll need to get someone from your organization to sign a letter saying Birdcr has been doing security related work for x number of years. You'll get an OK to do just the exam valid for one year.

I had one but stupidly didn't make time for the exam. 

more info here http://www.eccouncil.org/takeexam.htm

That man knows how to present.

Informative, funny, and motivating. Totally didn't know it was an hour long.

Thanks for the link.

I don't know if you've seen this, or if it's of any help:
http://sans.org/info/38448 <--SANS Salary survey 2008

Backtrack is a Linux live CD. So you can just drop it in your drive and it'll work, without having to install it to a hard drive. As timmedin said there are many many different flavours of Linux, what's special about backtrack is it comes with a mass of pentesting tools installed, so you're good to go straight away.

Because BT is tailored toward the pen tester, it's actually quite small (1CD), where other distributions of linux can have many CDs or DVDs, so it might be a good choice if you're limited for bandwidth, however if you're completely new to linux you might want to take a look at ubuntu which has a massive community for support. (and there's also a Live CD version)

Good luck.

I feel sorry for the guy having to demo it to clinch the sale. 

They do say that you don't need Backtrack, but the course is run by the BT guys, the vids are all BT, and BT has all the tools you need in one handy place. When you get on a roll you'll appreciate not having to stop to download and compile something you've not got installed.

You'll be using XP for parts, but OffSec provide you with a box to RDP to for those bits.

I've been running a HDD install of BT3 on a VM and it's gone smoothly.


Good Luck, you're going to have a blast!

Quite surprised myself at the length of time before notification (and also the lack of post here about it). But like the man said, there's no sensitive data here really, and we all should know better than reuse passwords. I think the sheer fact that our hats are white would mean that this site is targeted all the time.

Might see my way to forgiving Don for the delay, if he gives us a nice writeup about it

You'll receive your personalised notes and vids at the same time as your lab access starts. (You book for everything to start on a certain day)

Doing things in the labs goes hand in hand with the vids as the videos are instructional in nature. Everyone has there own learning style, the way I did (and am doing) it is to read the notes through once just to get an idea of what the course entails, then do the labs along with the videos (heavy use of the pause and rewind buttons). I'm not saying you'll get nothing from watching the vids without doing in the labs, but doing them together certainly helped (and is helping!) me grasp certain points.

--edit--
Just noticed the subject of this thread mentions the exam. You've got plenty of time between the labs ending and when you need to do the exam. IIRC you can book the exam to take place up to 90 after your lab time ends.

Just found out Damn Vulnerable Linux 1.5 was released a couple of weeks ago and couldn't find news of it here so thought I'd share.

http://www.damnvulnerablelinux.org/index.php/eng/Damn%20Vulnerable%20Linux%20Distro/News/DVL%201.5%20finally%20available

I can't seem to find an info on what's been updated since 1.4 other than a Metasploit update, but I'm going to take a look anyway.
 

I'm currently rocking a MBP. Mac Ports have most things, and I fall back to a Samurai/BT3 installation on VM Fusion if needed.

There's quite a Fusion Vs Parrallels argument on various different sites (also if it's a linux guest OS you're looking at, I've heard good things of VirtualBox) and with the current releases they're about neck and neck. I chose Fusion because of my familiarity with  VM products. There are some arguments about better video hardware acceleration, but if it that important go bootcamp and install whatever OS you want.

I've also got the OSX for Hackers book, it's good but it's starting to look a bit dated (there's a chapter on setting up kisMAC which is no longer needed as kismet works fine from ports), but if you're totally new to OSX it's worth a quick read.

I'm still with the "whatever you're most comfortable with" camp, I just happen to be comfortable with overpriced eyecandy