ARHHHH I SEE SAID THE BLIND MAN 

all seems clear(ish)

thanks again!

Thanks for this, I had seen a flash of this book, but never put the two together ( ) and wanted to folllow a structured learning approach with some thing to test my understanding at the end.

Well I've put my training request in for the foundation 5 day course but 2k plus VAT seems highish, so fingers crossed it gets approved. Otherwise I'll have to battle through it myself (as always!)

thanks again

took CEH, OSCP and elearning, but if the discount codes still available for this, well I can feel my wallet opening?

oh just seen its not anymore, time to save lol

any news on a catch it later recording?

Hi all,

I've been following the latest CIS hardening document for windows 7 and using Nessus to monitor my GPO progress. However I've come accross one setting which I don't seem to understand the logic of and wanted others opinion. If I have no legacy in my domain why would I do this? I can see you may want to add exceptions but this seems to be lowering security and seems to be saying just fall back on other security at the OS level???

Check Name: 1.12.4 Turn off Data Execution Prevention for Explorer

Information
This control defines whether Data Execute Prevention (DEP) is enabled or disabled for the explorer process.
CCE-9918-4

ref: https://benchmarks.cisecurity.org/tools2/windows/CIS_Microsoft_Windows_7_Benchmark_v1.2.0.pdf pg. 160

Description:

This control determines if Data Execute Prevention (DEP) is enabled or disabled for the explorer process. For all profiles, the recommended state for this setting is Disabled.

Rationale:

DEP, when deployed in concert with the other native Windows exploit mitigation such a ASLR, Guard Stack, and SafeSEH, provides an effective means for preventing the exploitation of certain software defects that may affect explorer.

Just wanted to know if anybody had been through this course yet? (at any level) I've looked at the CISSP architecture concentration but this looks far better. Brought a book on TOGAF also, but tbh it was very dry indeed and this seems more inline with my interests.

Any feedback would be great!

thanks

Agree, I really want to get some accountability over these accounts and provide some ability of containment if the worst happens. At the moment its the old god complex going on and convinience rules over security, using things like password vaults which removes all accountability with RDP utils which store credentials to hop around boxes that seems to further flatten the need for priv escalation to that of a normal account.

I'm currently looking at the newer audit policies in 2008 as we run a windows 7 only shop (one good thing no legacy about) although expensive firewalls running as pure stateful packet filters was a bit of a laugh.

thanks for your input...

Hi All,

just a quick question, I've recently found quite bad overuse of domain admin priv's accross our network by admins. I've performed a POC by using Incognito and successfully added a new account from a standard account into the domain admins via tokens.

I've read the paper for this, as included in unleashed\bt type materials. So I will be trying to implement better policy to control overuse and highlight the dangers to why Domain admins needs reducing.

I'm currently going through a best practise windows 7 hardening document and it mentions using User Account Control (UAC)

would this be a mitigation or risk reduction in an attack like incognito? My feelings are it could help remove the dash attitude of just logging in as admin and therefore reducing the amount of tokens hanging around.

Granted the real problem is a culture shift and AD structure\ least priv permissions themes, but its still useful.

Any opinions or experiences welcome...

thanks

Got my code & paid my silver...  Looking forward to the course... I'll let everyone know how it goes

I did and I got the mail saying the discount code will be in the next mail. But could'nt see one?

Hi Armando,

I'm looking to purchase this course before the 31st deadline & beat the price increase. I just wanted to get the 5% also but no discount coupon has come through??? I've completed the CEH & OSCP courses so will look forward to this one also.

thanks in advance

Thanks for the useful reply guys, I've taken the chance to jump on the ISO27001 Lead Auditor course as for once we have one in my area. So I thought I'd get this sorted early this year as there seems a growing trend in the UK towards ISO27001 frameworks

I'd just like to put this book forward as a good enjoyable read for people wanting to see a hack from start to finish with counter measures.

http://www.amazon.co.uk/Chained-Exploits-Advanced-Hacking-Attacks/dp/032149881X

I don't think this is too heavy for the beginner as its well written and easily understood IMO

Hi Guys, I've spent a lot of my time in infrastructure roles and picked up MCSE and CCNA along the way. I always found myself more interested in the security sections these work roles presented and found myself getting the infosec bug from books by Bruce Schneider and Kevin Mitnick to name just two. I then progressed by self studying the CEH and moved into a general IT security consultant role with a big firm. Again I carried on my knowledge by self-funding\studying CISSP and CISM and passing. I now feel that my work has become a little stale and find myself giving signature type incident\project answers on the risks to the business. So of late I've been thinking of specialising into a pentester role. I have to coordinate and review pentests at my current job and alarmingly had to step in once or twice when I've felt the pentest is creating unacceptable risks to the business (something some forget that's why we are here!) So I'm glad I've seen the wider picture here also! After some research I've seen that in the UK you have to get a cert that meets up with the CHECK standard. So that's TIGER or CREST for me being none government. Its not worth me progressing the LPT route in reality... Anyway given my background I've decided to take one of these next year. I'm currently taking the OSCP as I heard it was a good course for content alone! and I thought this would be a good start to my prep. I'm also reading hacking windows and linux titles having finished hacking exposed 6. oh and hacking web apps exposed all latest edition. I shall work through the met unleashed course also and up my scripting of pearl or should I use python? other than that I was going to download the exam outline and research the topics off the net.... would this be enough to pass one of these exams? sorry but 1600 is a lot to lose when its self funding - failure is not an option!!!! I've seen the topics outlined and it does not strike me with fear as many I've studied, but its hard to really know the level required. Any advice from guys who have sat these exams or the prep they did would be great...

totally agree Don! just like risk management try to influence your own destiny as best you can.... Thats why I decided to take my CISSP and CISM back to back and paid for all the fees myself without any support. Now I'm planning to take on the TIGER or CREST pentesting qualification which is the defacto needed to practice in the UK as its levels with the CHECK CESG... oh and that chapter give away on setting up a lab has come right on time :-) I'm just finishing the OSCP and reading reading reading to get ready for my goal of early next year... I'm actually starting to think sod working for others and starting up my own company, but I think it maybe wise to get some experience under my belt first... I might offer some services to local charity first for free.

The trouble with were I am is you can't even discuss security out in the open and pentesting is just scripting to them... or your labelled as a techy who can't understand the business... I strive for both thanks! some have a passion for infosec and some just do it as a job I guess... tick the box and move along and don't put your head above the trench!  
If only my middle\leadership mangers had this viewpoint
 http://www.accountancyage.com/accountancyage/features/2248171/tighten-security-4788678


right on Jay abbott