Hey everyone! I probably lurked around here long enough, so I am happy to say I passed my C|EH!  I dragged my heels but finally knocked it out in a couple of months of self study once I started.

First off, (and if this is in bad form please mods delete this), I am ebaying my courseware.  I managed to absorb about as much as possible out of it, and planning on getting a few more certs so I need the money.  So if you are interested here is the ebay link:  http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=250696701192

Now onto the magic question that everyone wants to know, how to study for it.  Honestly I think the people over at EC-Council did a great job of making the test so that you have to know your stuff.  I am sure someone has the dumps out there, but I didn't look.  I studied the courseware, the offiicial study guide, then wrapped it up with the uCertify Prep software.  The test took some thinking on a few questions to work out some problems, but overall it wasn't too bad.

My experience is light computer security work for years, I am pretty decent with all the distros out there and use Pentoo for the most part.

Please hit me up with any questions you guys may have, especially if your taking the test anytime soon.

haha, I was thinking the exact same thing!  There are a lot of great classes out there, but I don't have the resources to pay for them. 

You happen to need an accomplice?

 

Several people asked me how I did packet injection on my Mac, and especially in a Vmware session.  So I put this little howto together to show how you could build one yourself.  I am going to just link to the post since it is late tonight, but feel free to contact me on here or the blog if you have any problems.

http://www.therunningtally.com/2009/05/packet-injection-from-vmware-with-bt4/

My new black hat standard of using their system against them is my favorite.  Most assume the threat of someone coming from the internet is their biggest threat, but i have shown time and time again that parking outside their building is the biggest threat.  Firewall and IDS have become so centered at the internet connection, so hitting the network from an AP can cause the most damage.  A lot of companies around my area still use older systems, which in turn means tons of WEP instead of WPA.  Or add in social engineering, go inside and plug in a small FON adapter at the reception desk.  Then you can work from the comfort of the car.

Z

I also have a MacBook that i LOVE for pen testing.  The only thing i hated was i would have to reboot to BT to do packet injection, and a few other wireless tools, that is till i found this baby:

hxxps://shop.fon.com/FonShop/shop/US/ShopController?view=product&product=PRD-001

Currently going for $29, but you can find promos and codes all the time to get them for $5 or sometimes free!  And the antenna comes right off to put something a bit bigger on it.  Then you take it and put this firmware on it:

hxxp://fonerahacks.com/index.php/Tutorials-and-Guides/Flash-Legend-Firmware-to-Fonera.html

And now you have a little guy, that can do all kinds of fun things, running Airserv so that you can actually do the computing on your machine while the packets are grabbed via the Fon.  Man it works like a charm, and i even built a batter pack on mine out of 4 AAs so that I don't have to use a power adapter

Zac

Hey Guys.  I decided to start on the EC-Council series.  So I ordered the CEHv6 self study guide.  Anyone else starting this soon that would wanna send pointers back and fourth?  And any feed back from those that have taken the class/test/study that have pointers of where to focus some of the modules, or any catches?

Thanks in advance.

Zac