u have passed CISSP !!!

Did you pass all the domains ?
Well regarding certifications there's MSS from EC-Council.
You can think about it.

For more info:
http://www.eccuni.us/mss.htm


Take care !

Congratulations man.

Well done.  Well I have the same things to say as Don.

It'll be helpful for others if you share the experience as in the types of questions or scenarios. Congrats again.

Cheers !!!

Good link !

Have you ever used this program ?

Well you can also get into writing policies for the companies.
Policies like Network Security Policy, Physical Security Policy, Email policy, Storage Policy, Disaster Recovery Policy, Backup Policy and things like these.
If you want any help regarding how to create these Policies, let me know, as I have some specimen of these policies. Maybbe it helps !

And above all, as Kev states, consider all the legal issues and be armed with the proper tools and techniques while doing the pen tests.

Prepare some slides as to give a picture of your cunsulting service which includes the things you'll do for the company. Inform te clients that you'll be sending the audits on regular basis ( or whatever time interval you have decided) with rigorous analysis.

All the best !

Thanks Don !

Am planning to do my NSA by first week of March !

If the dates dont collide, I'll try to attain it !

Thnx !

No ....
It has something to do with cryptography !

Hi,

I am unable to get the exact meaning of birthday attack !

I have gone through many resources and also consulted some people. But never got a explanation.

Maybbe you guys can help !

Thnx !

Hey, Welcome to EH-Net,

Well, you havent mentioned any of your expertise domains like, Networking or programming.

For getting started, you need to know networking in depth. Like ports, protocols, port scanners, routing, domain names, DHCP and stuff like this.

Dont worry if  you dont know any of these things, getting started is important !

You may start by working with a local netrworking service providers.

Learn the security concepts, what is data, data storage and the vulnerablities in a network, how to secure them.

These days , there is a big boom for this industry, but you have to be perfect !

All the best for you !!!

Hi !
Guys Im planning to do my NSA by the next 2 weeks !
The person giving the training is a certified trainer for ec-council.
I am afraid, should if I rely totally on the reference kit provided by ec-council or are there any other resources for modules like :

Module8 : Packet Filtering and Proxy Servers.

Module 11: Hardening Operating Systems Security.
In this module they have discussed the Registry and configuration of Windows Services. And also some Linux OS fundamentals and the most annoying thing about Linux(for me) is the PAM Modules and the Network File System.

I have never worked with Linux. I mean installing Linux is far different from troubleshooting and managing it !

I am not afraid, but nervous, as to how to prepare for Linux ?

Can anybody suggest a more practical way, along with which version of linux is the best and things like this.

Thanks in advance.

regards,

I strongly agree with divine's point ...
The no. of script kiddies is increasing and ugly, illeterate people are getting high end certifications.
Regarding discussing questions, its ok as far as guys dont just mugup the questions.
As discussed by somebody before that this is a place to educate everybody about the golden era called Internet Security.
And I would regret if EH-Net comes into any trouble due to legal issues regarding the questions or any content.
And if we get people in this field those are certified with little or no knowledge at all, it'll be embarassing.
The world around, has a great respect for ethical hackers, and if people like these start coming to this industry, its gonna be a heck !
When I passed my CEH cert in 2005, I thought that I'll be able to make it big in Info Security industry, however when I started working with some real geeks, I came to know that its practical knowledge is what counts. Not certifications.
Anyways its all about knowledge and understanding.

thanks venom77 !
and also the disaster recovery and storage concepts are avoided in CEH !

Hi there,
Anybody heard about the Network Security Admin. course from EC Council ?

Hi !
I've heard that one needs to have a work experience of at least 3-4 yrs in security domains.
Also a bachelors degree is necessary.

I was testing the CIA trojan.
I had binded it in a mail and was attempting to send via gmail to a friend.
My friend has configured gmail on Outlook Express 6.
The mail reached and when he clicked on the attached pic (to which I had configured and binded the trojan), he is able to see the pic, however I dont get any notification about the trojan.

Kindly educate about bypassing the antivirus or firewalls.