3pIcenTer,

I used to teach C and C++ and I know python, Java, etc...

What do you want to do? If your goal is to automate some jobs, then python or ruby are the tools for that. Applications are developed in C++ and I wouldn't use this language just for scripting.

Figure out what you want to do, then pick the appropriate language.

Yes, the Verizon report is indeed very, very good. Thanks ElCapitan!

Also,

We are al trying to help each other on this forum, but we can't talk too much about the certs. As you know, we all signed something saying we won't talk about the exam details.

The hard the certification, the more it shows how much you know in this field.

Just be careful not blaming the others for an exam you alone wrote... 

Ahhh! Great!

These two links are exactly what I was looking for:

http://datalossdb.org/statistics
and
http://www.ic3.gov/media/annualreport/2009_IC3Report.pdf

Thanks guys!

Hey,

I have been trying to find facts related to information security. I am doing a presentation next week to the management team and I really, really want to catch their attention. I am looking for things like (I am making up the numbers, as an example):

- 80% of all attacks comes from inside an organization
- 75% of all web sites are vulnerable to XSS attacks
- Etc

So, do you know where I can find a reliable source for impressive facts?

Thanks!

Diamonddrago,

I failed CEH too the first time. I got 68% (while I needed 70%). I was starting in IT security and didn't even know about this forum. I basically studied the wrong things (I learned about many, many things that wasn't in the exam...).

I took a month off from studying, then spent 3 months on GSEC. Once I got that cert, I did CEH 8 days after and passed the exam!

But now, I am happy to have it. And I used my experience to teach my daughters that in life, when we fail, we just have to work harder and we will succeed later.

So take a break and you will pass it next time, now that you really know what the exam is all about.

What does not kill you, makes you stronger! 

wget did the trick...

But I was surprised to see that ftp -s exists on Windows but not on Linux. At least for the default basic ftp client.

Anyway, thanks guys!

Thanks guys, but I should have mentioned that:

1) curl is not installed on the client machine;

2) Even though I am using the very basic ftp client on the client machine, I am using Pure-FTPD as a server.

So both solutions proposed aren't working (unless it is me!).

I will keep looking and post my findings, unless one of you can help me same some time... 

Hi,

I am currently searching for a way to use the basic ftp client on linux machines to download a file in a non-interactive way. So let say I want to download netcat, I would have a file named "ftp.txt" looking like this:


I know on Windows, I could type ftp -s:ftp.txt and it would download the file automaticaly.

But the "-s" command doesn't exist on linux systems... What can I use instead? I just can't seem to find it...

Thanks

For me, I saw this nice ad in a computer game magazine and managed to get an hold on the image on the internet. To me, it represents "serious" and "funny" at the same time! It also represents the average government employees who works on the same thing, days after days, and then becomes monkeys. Replacing "i" by "1" and so on is the little hacker in me (I watched too many movies!).

ngriffin, I followed the same path as you for my GSEC certification last winter: bought a practice exam, put all my notes and materials together and took the test.

Since I pay everything from my own pocket, it also made sense to me...

I will be looking at GPEN in fall!

I will post on this forum when it will be in Beta. Probably August or September.

Thanks former33t.

Thanks!

But what about wireless card support? I haven't try any of them with a wireless card or a wireless USB dongle, but reading http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/topic,5519.msg28935/topicseen,1/#new makes me wonder if one virtual machine is better than another one, as far as driver support is concern...

And yes, I agree the VMware products look better on a resume.

I was wondering which one you use in your lab.

I used to have VMware server, workstation and player in my lab, but a few months ago, I installed VirtualBox and I find it quite easy to use. So far, I didn't get any problem.

Because I am definitively not an expert on virtual machines, would you guys see any limitation with VirtualBox?

Thanks former33t for your comment.

It makes sense and I had not thought about this before. I have an idea on what I could do to report this kind of data.

Anyone else?