Guys

My Cisco CCNA security expired, that certification open me the doors many times, so I begin to study again to renew it but I have a dilema.

I am really more interested in Pentest, I've been reading books and took some training with ISSA, also I took the OSCP training and my lab expired three times and I new I had some weaks areas like exploits (I think everybody got this problem).

Shoot me your opinions, keep going with the recertification for Cisco or keep going with security.

I work for IT company so I worked with servers, firewall, wireless, some vulnerabilities assesment (Nessus guys), etc, etc....

I feel like a teenager before graduation from High School, lol

I got the idea that it was only questions how to become penteset how to begin, etc, etc.

The title begin with: "Call for Beginners : '

It is true, you became overwelm with a lot of fields in security, one bit at the time.

Congrats, I remember how disappointed you were at that moment and you seid you would go to another route, Congrats, you never gave up

it looks interesting

In my case in the lab I make sure the OS and version of the service in that port, and then I begin to look for the vulnerability and begin to test one by one.

Houston, you know guys: "Houston we have a problem"

Yes, learning, learning, never stop in security. Ask my wife, she always asking me when will I finish the read those books (Ipad, laptop, etc).

For me a book became out updated is when the technologies is not use to much.

For example, I did not see to much Windows 200o lately, so I would not buy that kind of book.

In the other hand I saw many old programming books with C, or bash that they still look interesting...

I am not sure if Thomas is getting the same problem for the small business. When they begin to grow you cannot keep managing the things like small way, it is necessary to change the methods so he can manage a growing market.

I hope he is changing the procedures otherwise it will kill the business, in internet reputation is gold.

I love these prizes 

Congrats, good job.

I was taking the course, the time expired for me, I will return in a couple of month, but let me tell you:

- Learn something about bash. python and some C
- Take any tutorials how the exploits works and try to do some exercises, in the training they explained pretty good, but you need some bases.
- Linux (what ever level).

But the most important part, you need experience in the technology (Windows/Linux servers) before to learn how to attack, otherwise you will not get what for are those services, where to go when you get some shell, etc,etc

I used both, and let me tell you that maintenance, use and update OpenVAS is time comsuming comparing with Nessus.

Sometimes despend of you time.

hayabusa

We know that, we know the different styles and routes for learning, we just wanted to joke a little about the PM, lol..

Yes, I read your review and before you mention it I remembered.