Thanks Sil !! Wow that is good explanation and a good start from me to learn more about risk assessment.

One more question I have done security assessment basically all  I do is Vulnerability Scanning is that what general industry practise ?? or should i be doing more steps..anything i refer and Learn.

Sil  great answer. Can you recommend any books or websites or tools for risk assessment. I never done risk assessment before.  Thanks in Advance.

Thanks for replying Everyone. I found FREE Bootable AntiVirus Rescue CDs Download List as well

http://www.briteccomputers.co.uk/forum/virustrojanspywaremalware/free-bootable-antivirus-rescue-cds-download-list/

Hello Members,  Are they any antivirus rescue cd's/tool kit..remote tools which are helpful in cleaning malware

I would say from my experience. I have taken courses for EC council  and other security certs but nothing came close to sans quality inspite being expensive i always was happy with quality and the style of teaching (though they will never come down on prices )

I have checked Cert.org courses they don't seem technical as GCIH. ECIH ( i wasn't satisfied with ecsa/lpt course  which i took in past )

Thanks for the info dymanik. I'm definitely don't want overlap as i would be planning for OSCP or similar kind of course in future as well i have ECSA/LPT.

I would believe GCIH is about how to counter the incidents using various tools & tricks along with methodologies ??

Hello Dark Knight thanks for replying.


No this is not my 1st security cert and i have previously taken courses with sans.

well I'm have been working in security operations/auditing for a while.

Hello Everyone,

I have been saving couple of bucks this year to spend on training.  So decided i should look into Incident handling( which i have no experience ).  Browsed sans course curriculum website, seems similar to a pen testing course. So I'm not sure that whether i should go for this course specially when I'm spending around 4k myself. Members over you have previously done this course could advise me " what exactly i would get out of the course" I'm really interested in incident handling.

Are there any better courses courses for incident handling  ( I'm looking to get good knowledge don't care about the value of certification )

Should I be look into sans 408 ?? or ECIH

Please advice

During remediation results obtained from VA Scanner what levels you considered to remediate. Is the general practise to remediate from level 5-3 ( as they can be related CIA ) ??  or what is the common practise followed in the industry

http://www.owasp.org/index.php/AppSec_US_2010,_CA#tab=Registration

simply go through the registration process and enter code: ECCOUN2010 for 10% discount.

O Yea ! long time ago.

Do you know any CIS scoring Tools? I want to see  how i score out of 10 for win 2008

Thanks Jason ! These are same files listed on NIST. I'm looking for more complete files like the one listed on NSA. If someone has recently worked on these files, They can give pointers where to look for these files

Hello All !!  I'm looking for INF files for win 2008, Previously I used Inf files from NSA and created templates in win 2003. I was hoping to do the same in win 2008 but i don't see any inf files out there.Has anyone worked on  creating win2008 security templates please share your experience.

What is the difference between external and internal vulnerability scanning ?
likewise for internal and external pen testing?

Hello All ! I'm looking for Automated Tools for Hardening( servers/routers). Any ideas? I know that NIST provides SCAP files but i don't know how to run.

http://cisecurity.org/en-us/?route=downloads.audittools