1) Yeah.

2) I haven't checked EHNet in a long time, so not used PM too.But I am now planning on once again becoming a regular contributor of the forum and in my active days I usually use PMs once or twice a week.

3) Will blog for sure.

4) I am.

5) I am. I always report the spam messages or other offensive stuff I see on EHNet and having a moderator with a different timezone than yours (India) will always help EHNet.

6) I don't have an excellent command over PHP but I can certainly help with some little scripts.

7) Sure. I don't generally use my social media accounts with other websites but it'll be good feature for those who do.

Thanks for selecting me as one of the winners even though my contribution has been nil lately.
I will try to contribute more to the forum and also the IT Security industry.

Congrats to all the other winners

CBT nugget's python course is great and can be easily used as the first learning resource. The thing I like about CBT nuggets is that it reduces your learning curve. Watching someone write and explain the code is a lot easier than going through the books . After that I would suggest Nick Parlante's Google Python Classes. It's a great addition to CBT nuggets video courses.

Next, you can read up any of the books mentioned by other members. Remember, you can always learn the syntax. But to be able to make useful programs you have to practice a LOT.

@Andrew
Thanks. I will ask Wepawet if they are willing to share their samples.

Alternatively, I am now trying to use heritrix web crawer to get the samples.

@hayabusa
Thanks. I highly appreciate it,
The thing is that I need not one or two but a few thousand samples found in the wild. Generating them individually would consume a lot of time. That's why I was asking if someone already has a database maybe they could share it.

Hello,

It's been a long time since I last posted on EHNet. Some of you might remember me and some might not. To cut the long story short, I got selected in one of the best universities of my country for MS and currently pursuing research in IT Security.

For one of my research projects I need obfuscated javascript samples: both malicious and harmless. I was thinking if I could get samples from any of the EHNet members or if any of you could direct me to some resource where I could get the samples.

If you want to share samples, kindly message me on EHNet and I will provide you my email address.

Note: Please do not ask for my email if you have only 1-2 posts here on EHNet. I will only provide the email to members I trust or members I can trust.

Regards,
Equix3n

I am presently reading "Assembly language for x86 processors" and it appears to be a good read. Though I am at the third chapter only.

Being an eCPPT I completely agree with Armando that you don't need to be a programmer to complete the course but you still should be able to understand the code. Most of the php required for the course can be easily learned from w3schools.com http://www.w3schools.com/php/default.asp

But, to get the most out of the course, I would suggest that you learn enough php to be able to set up a basic website, prior to joining the course. Learning vulnerabilities without understanding the language gives you an abstract view of that vulnerability. If your objective of joining the course is to LEARN and not just to earn one more certification than I would definitely suggest learning enough PHP and C (Focus on pointers) before starting web application and system security modules.

You can even start the course and learn PHP and C alongside. In that case I would suggest starting out with network security module first as it doesn't require ant programming skills and learn PHP or C side by side. Then, once you're comfortable with PHP or C, you can jump to web application or system security modules.

I didn't know any PHP when I passed the certificate exam.

'The Web Application Hacker's Handbook' will be a good companion.
Other books I read/consulted:
Counter Hack Reloaded by Ed Skoudis.
The Shellcoder's Handbook.

Counter Hack Reloaded: I can't believe it's already not on the list.
http://www.amazon.com/Counter-Hack-Reloaded-Step-Step/dp/0131481045/ref=sr_1_1?ie=UTF8&s=books&qid=1301469768&sr=8-1

Building Open Source Network Security Tools: Components and Techniques
http://www.amazon.com/Building-Source-Network-Security-Tools/dp/0471205443/ref=sr_1_1?ie=UTF8&qid=1301469732&sr=8-1

This might appear as a strange choice, but it's really a great book. Building your own tools also helps you understand the existing tools out there.

Congrats tturner

Hello MadCoder, and welcome to the forums!
xXxKrisxXx has accurately answered all your queries, I'm here to just give you some diversity eLearnsecurity's PTP is I think a great course for someone beginning into the security field. I've done only this course, but based on the reviews of other courses, I guess PTP and courses from hackingdojo are the only beginner friendly courses out there.

Though PTP covers a lot of material (network, web and system security), it doesn't go too deep into any of it. But it does provide you a good security foundation so that you can easily dive into other courses like OSCP and SANS etc.

To get the best out of this course, use some outside references along with the course material. I used 3 books: The web application hacker's handbook, Counter Hack reloaded and The shellcoder's handbook to accompany each of the 3 course modules.


I can't talk about experience as I don't have any (will be graduating in 2-3 months), but retaining requires a lot of practicing. Presently, the course has only a few labs but in late April they'll be providing lab environments which students can access into, and practice their skills. It might require 'purchasing'  some lab time, though, nothing is finalized yet.
coz they aren't Microsoft j/k

I would suggest Counter Hack Reloaded. http://www.amazon.com/Counter-Hack-Reloaded-Step-Step/dp/0131481045

Good luck! Hope you'll be the first one to get the new certificate

Perhaps this might help you
http://www.pentest-standard.org/index.php/Pre-engagement