What about Wireshark (or tcpdump etc.) with Scapy?

That's pretty much all you need to read, analyze and even create packets.

I'm working on a 1st level (outsourced) help desk and have supported several major manufacturer products for end-users, where I've never used a pre-made diagnostic script ever.

I read about or listen to the problem which the customer has, and then I know what to try (aka troubleshoot) based on what the problem is or might be. The payment is typically insanely low within these jobs though. (But you can get food on the table each day.)

I'm not saying it's very challenging or fun, in fact it's the most boring job I've ever done to be completely honest but it has improved my soft skills a lot. Furthermore I'm also doing it, because it's better to have this within IT than nothing at all or perhaps "house cleaning".

I've done this for almost 2 years now as my daily job while doing the fun stuff after work in my own free time. I even did a shorter education within IT as System Administrator over 2 years where it was only focused on IT. Nothing else just IT  That was fun but it didn't help me to get a job at all though.

I haven't gotten any certifications yet, but I'm still studying shellcode in order to complete the CTP (OSCE) examination from Offensive Security. I plan on taking a lot more certifications in the near future too of course, such as CISSP, CEH, OSCP, OSWP, and more 

Anyway, back to the topic.

It isn't easy to get a job within IT-security if you don't have any former experience, certifications nor education.

I've experienced that myself and the easiest way to get a "job" is to become a freelancer or start your own business if you have a vision you'd like to come true.

Good luck with all your certifications though, and your future job! 

Have you read the Table of Contents?

It appears to be a very (very) basic course:
http://www.defilaide.com/index.php?option=com_content&view=article&id=214&Itemid=207#content

I could be wrong of course, but it looks very brief as if you might only breach the surface of (ethical) hacking.

Most likely D4rk357.

My best guess is a DNS Amplification Attack, POD (Ping of Death) and / or Slowloris style WebServer attack, perhaps all 3 combined for a higher success rate.

I don't think it's something new even though I can't confirm nor deny it.

Update:
Oh yeah I forgot about UDP and TCP DoS attacks too.  

After all if he's not attacking specific services on the target computers, such as
web-servers, dns-servers etc. then he's abusing the functionality of the ICMP, TCP and / or UDP protocols which hardly can't be something new. Just better implemented.

One way to detect if NAT is present on a target network and find out a possible IP-range is:
1) Assume the target network is using its own mail-servers internally. (Some corporations outsources their e-mail servers though.)
2) Send an e-mail to an non-existing address at their domain name. ( 213782hdsa@domain.tld )
3) When the "Post Master" automatically returns your e-mail, look at the e-mail headers.

If you want a visualization of what to look at, take a look at this video about information gathering:
http://www.youtube.com/watch?v=1nd6vAz4SOw

This is also a part of the phase known as "recon" aka reconnaissance during a pentest.

I am however, unsure how to detect an IDS without scanning the internal network and / or router.

Mine is pretty simple.

[CABLE TV SPLITTER] <=== COAX CABLE === [Motorola MODEM] <=== UTP CAT5 === [LAPTOP]  

Uncapped to 100mbit! Just kidding  But it is possible to do though I haven't tried since it can result in a life-time ban from the ISP 

If you don't know yet, here's the documentation for the HaXx.Me #02 challenge:
http://blip.tv/dashboard/episode/4127637

You can also get it here: http://bit.ly/diSgY9 ( pass: www.intern0t.net )

I assume you're OSCP certified then if you completed both courses? If so have you thought about the more hardcore OSCE certification (CTP course)? It isn't as "big" as PWB but it surely is a lot more harder of course.

If you're into Web Application Pentesting then I don't know which course I can recommend yet. Perhaps the link dynamik wrote in the post above  

I assumed you meant software application pentesting, so I'm sorry if you meant Web Applications  

There's of course AWE (by OffSec as well) which is only Live and of course based on Windows software exploitation.

OSCP (Offensive Security Certified Professional) aka PWB (Pentesting with BackTrack) from OffSec offers a lot of Application Pentesting and a certification too as you can see.

I don't think it includes VOIP, but if you have never done any of their courses nor certifications then with your amount of certifications and experience, it would be on time to try some of the hardest certifications 

In case there is copyrighted material which has been copied from his site to the other, then he's able to claim copyright for that if he's the rightful owner.

I found that funny as well, though at least not all "hackers" including blackhats (and many other hats) do that mistake.

I'm not a blackhat but when I've had to develop bypassing techniques for AV-scanners, I made sure that my work was not automatically sent to M$ nor the Anti-Virus manufacturer.

Else it's pretty much worthless work, which I assume most of us are not fond of 

If you wonder exactly what those bypassing techniques are used for, it's for demonstration purposes to compare how hard or easy it may be to bypass different Anti-Virus systems. (The entire system, that is.)

No the challenge aka wargame lasts around 7 days 


Thanks pizza1337, there's also a few here:
http://www.youtube.com/user/maxel3g3nd

Correct, stacked queries does not work on PHP and MySQL implementations  

It is possible to pollute / poison the logs with CSRF and / or XSS vector attacks,
however it is also possible to perform completely blind sql injection if all aspects are known or possible to be predicted or enumerated.

In this case, one thing to check is e.g. is magic_quotes turned on?

Possible attack vectors include but are not limited to:
- Altering user and password credentials
- Uploading backdoors in PHP (this requires special permissions.)
- Loading system files and moving them into the "http" (html) directory. (requires special permissions too.)
- Adding new users with administrator privileges.
- Log Pollution / Poisoning as Ketchup said  

Thanks H1t M0nk3y  

There will probably be a video by InterN0T as well when HaXx.Me #02 ends 

You do know that this is a board (forum) for ethical hackers right?   

Ethical, as in not breaking the law. You, are on the other hand asking for blackhat or script kiddie services which I don't think is suitable for this board.

None the less I had a great time reading your request.