Dugg it as well. Come on guys, we need more people to dig this story.

Terrorists are being called to attack U.S. Internet-based stock market and banking sites in December. For complete details on the story, check out the following link:

http://www.foxnews.com/story/0,2933,233477,00.html

The above Nepenthes Appliance will not work. Apparently the person who created this virtual machine used the Ubuntu 6.10 iso image which was not included in the zipped file. Therefore I removed the links previously posted. Guess, we have to keep looking.

Hey, what about Nepenthes Appliance based on Ubuntu 6.10 Edgy Server. Instead of using this server for malware analysis, use it as a target. Since this server already emulates vulnerabilities, it might be a good candidate for pen testing. Has anybody tried this? I will download Nepenthes Vmware Appliance tonight and include it in my virtual lab for experimentation.

**removed link**
**removed link**

This site was the first hacking challenge for me. I completed all challenges years ago but I did had help from Google and books from the library. I remember that for each challenge I had to do research and a lot of reading in order to pass to the next level.

You can check out the trailer in the following link:

http://www.youtube.com/watch?v=JPfdLyM0-pg&mode=related&search=

Read the following post http://www.ethicalhacker.net/component/option,com_smf/Itemid,49/topic,820.msg2364/#new

Hello Dale,

Upon successfully passing the CEH exam, you keep this certification for life. For additional information about this cert please refer to http://www.eccouncil.org/CEH.htm and http://www.certifiedsecuritypro.com/content/view/53/91/. Please note, that on November 13, 2006, CEH version 5 will be rolling out and replacing version 4.1. Even though, you have until summer of 2007 to take the v4.1 exam if you wish.

I'm currently studying for the CEH and I haven't purchase any official material for this cert yet. I was considering taking the test on March of next year, so I guess I should wait and get the new v5 courseware. Hopefully it's  better than the previous versions. I've heard bad things about them. Can't wait for the reviews on this one.

Thanks for the tips Kev!!

Hey, Kev thanks for the info. I read the article and it motivated me to go head with the self study. I'm planning to purchase the following 3 books:

- Gray Hat Hacking : The Ethical Hacker's Handbook
- Certified Ethical Hacker Exam Prep (Exam Prep 2)
- CEH: Official Certified Ethical Hacker Review Guide (coming in Dec 11, 2006)

I'll later write my experience on self studying and taking the CEH test to the forum.

If anybody has other suggestions or additional advise regarding the studying of CEH, just post your comments here in the forum. Thanks.

I always advice newbies to first read TCP/IP JumpStart: Internet Protocol Basics by Andrew G. Blank. This book explains the basic in an understandable writing which also includes illustration. It's easier for novice to grasp the concept after reading this book. From there, then you should read a book thats more comprehensive and deep in to details of the protocols, such as what we IT professional consider the bible of TCP/IP, The Protocols (TCP/IP Illustrated, Volume 1)  by W. Richard Stevens. This book is a bit outdated and ones should also consider other resources with updated information, however this book explains the foundation of TCP/IP.

This is exactly what I need... I'll keep my finger crossed.

I'm strongly considering on taking the CEH cert and I would like know if it will be hard to pass the test without attending a boot camp. I'm thinking of acquiring several study guides and setting up a virtual lab at home for my studies. Is this a viable solution? I'm considering this approach since I can't afford a course and I know the company I work for will not pay for it. Any recommendation is greatly appreciated.

BTW, sick article and I will use it for my benefit, thanks.