I did the same plunge 3 years ago. At that time, I had 8 years experience in IT.

One thing I did, in addition to having a good contract BEFORE I left, was to take a one year without pay. This way, if something didn't work out the way I was thinking, I could go back to my previous job.

BTW, the hardest thing for my as a contractor now is training. I used to have 1 week a year of paid training/conference. Now, I obviously pay everything myself. For example, a SANS course at roughly $4000 + travel $1200 + lost in revenue of $4000 = $9200 for a week long course!!! It used to be free...

You also need an accountant ($2000/yr), health plan in the US (I leave in Canada!), dental plan, put money aside for a pension, etc.

BUT, I love changing place often, meeting new people all the time, touching different technologies, etc.

Bottom line, I wouldn't go back as an employee who more often than not, stay in the same office for years, doing more the less the same things every day... (ok, I am pushing a bit, but...)

Hope that helped!

As a contractor myself, I constantly meet "Full Time Employees" that think we run on gold. If they only now...

I am curious to find out who's the winner. Black Hat USA starts tomorrow, isn't?

I was going (and still want to) join the Ottawa (Canada) chapter, but sadly, they don't seem very active. I think they have 6 to 8 meetings a year.

A guy I know have been there a few times. He told me people are very nice, it is informal (eating pizza) and relaxing. He liked the talks but didn't much about them. But at least, he wanted to go back, so it can't be that bad.

I hope it helped a bit... i am interested to in what people have to say about them. OWASP do great stuff and I like their web site!

It's true, it is the same idea.
You're clever Ketchup...

That's what I was afraid of...
Glad I chose to go to Def Con instead!

Anyone went to the "The Next HOPE", which took place last weekend (July 16 - 18) in New York City?

I am curious to get some feedback about this conference...

So many ways to crack a password!



http://www.computerworld.com/s/article/9179224/Researchers_Authentication_crack_could_affect_millions

The 2-day conference pass is $895

Congrats Hayabusa!

Congratulations sachitre!

Did you also take the 6-day course or you just studied on your own?

Ok, thanks secureseven for your clarifications.

@Grendel, I just added the first review of "Professional Penetration Testing" on amazon.CA (hey, I am a Canadian!  )

Great book, I truly enjoyed it!

Sounds great secureseven, but other than for its minimalist implementation, what would ArchTrack have over BackTrack? I mean, do you have tools in it that isn't in BackTrack?

Thanks Don for the link to the review.

This course looks like pretty a pretty good one. It's hard to get methodology from a book, and SANS are usually good on that regard.