hack_80,

depends how much information you can get. If you have a copy of the current config then you may be able to crack the password hash depending on the encryption used/IOS version, of course you may be able to just read the password in plaintext depending on config commands also.

Failing that, as far as I know it's password reset time, which will definitely interrupt the service and depending on model (I'm not familiar with the 3500 series) may wipe the config.

Hopefully you can get more specific info from someone with hands on experience of the 3560.

Guys,

sounded like this could have been interesting if it was done right. Being the wrong side of the pond to see this, did anyone catch it and is it worth trying to get a hold of?

BigTone82,

first off welcome to the forum.

Only thing I'd add to the list is that before you get any of the things previously listed you need one thing, patience.

From my experience it take a lot of time and a lot more work to be an 'ethical hacker'. I've been around IT and security for a while and don't come close to what I'd class as a hacker (leaving the holy-wars out of it  ) but I'm learning fast, have the ethical part and I'm still here wanting to improve.

As others have said learning the basics first helps (TCP/IP etc.) but don't expect to learn everything instantly. Most importantly though if you want to remain interested in the field for the long game, ignore all the advice here and study whatever makes you go 'ooooh, hows that work?' be it IDS, shellcode, scanning, etc. I found this has helped keep up motivation to learn through the 'do I really need this?' moments.

If you dive in wherever you're most motivated you'll find the basics come through time as and when you need them. (at least I'm finding that).

Good luck, and don't be afraid to ask the questions when necessary (just ask google first  )

Thanks for links pseud0,

managed to miss those stories event though I frequently visit the sources, must have been a busy day at work.

As Manu said, as long as humans are involved there will be weaknesses, and where there are weaknesses they'll be people trying to take advantage, that should be where we come in....

cheers for all the responses, hasn't helped me feel any more confident but knowing others have been through the process and still had positive outcomes should help my nerves

I would love to get to Hacker Halted and other cons but being stuck the other side of the pond makes travel and costs a bit prohibitive. Think my best bet is to try to get to one of the European SANs events events, aiming for the 504 course as a training for the GCIH. Might have to wait till next year to get the funds together though

I think that about sums up the arguements from my perspective.

Kev,

I've heard the argument a few times that you re limited in what you can learn about Linux when running from a live CD.

However as most Linux installs I've done recently involve little more than clicking 'next' until the install starts I can't imagine that you can learn to much from installing the more mainstream distros, even the backtrack hdd install is fairly straightforward.

Whilst you *will* learn a lot building a pentest laptop using damn small linux etc. I don't see too much advantage over using BackTrack et al. from a harddrive install over a live distro.

(as a caveat: I use live distros (BackTrack, Knoppix-STD or Helix depending on situation) for incident handling work for ease, but my usual OS is Linux so I can get my fix there from a learning perspective)

Guys,

hoping one of you experienced people can allay a fear I've got for taking security (or any other) courses.

As I've stated in a couple of threads I intended to study for and hopefully gain my first security cert sometime this year (still not sure which one despite all the advice I've had so far, sorry guys). However I'm concerned about attending a training course and getting left for dead behind a lab full of more experienced people.

From courses you have attended what is the common ability/experience level and spread?

Thanks in advance

For my two cents worth.

I've tried setting up a dual-boot MS-?/Backtrack machine on a number of occasions and never same to get that much benefit from it. If your primarily a windows person than just boot backtrack from the CD.(or other, I personally like knoppix-STD although it doesn't seem to be developed as agressively as BT)

This way you get all your usual OS for day-to-day and your Linux tools when necessary. Only time I would consider running BT in a VM is if your trying to study/experiment during quiet moments at work and still need your primary system for 'work'  .

On the build your own side, again I've tried this several times (actually intend to start again...) Previous attempts have been made using Kubuntu and usually end up with me removing something vital whilst trying to get rid of the fluff I'm not interested in. In an attempt to start small, but still gain the advantages that come from the [k]ubuntu/Debian family I'm intending to start with a base install of Debian and build my system from the commandline with the apt system.

But ChrisG may have just thrown a spanner in my plans as a quick look at the Pentoo site makes me think it may be worth investigating further....

Hi All,

I've just heard back, a recording should be available to those who registered in a few days. Watch your inbox

I was unable to attend this event as it classed with a live BCS event was attending. Hopefully there will be a recording of the presentation released as I was interested before hand (and moreso after reading comments from those that attended).

Unfortunately from previous experience with Core Security they are usually fairly quick to get the recordings out.

If I hear anything else or get a link I will let you all know

Bill,

thank you very much for the advice, it has definitely helped me to better understanding an external view of how others can see the various certs.

As far as personal experience goes, I've said in another thread that I've been interested in computer security from a young age. But wasn't planning on going that route until I ended up in a computer science course at college cause IT clashed with maths (wanted to be an accountant, don't ask why ). Turned out fixing my Dads computer and controlling the Logo turtle from a BBC B Micro actually turned out useful.

I've just graduate University with a 1st class honours degree in computing for industry (embedded processors, real-time systems, robotics, etc.) and have 3 years experience working in a security oriented IT company where I have had the opportunity to influence systems and procedures in place as part of the ISO/IEC 27001 standard certification.

From handling several (becoming numerous) incidents for my employer and clients I know (I think) that I have good ability in this field but would like some formal training and 'pieces of paper' to be able to prove this ability to both my current and future employers.

Sorry for the life story and thanks again for the advice.

I've just found time to watch the linked vid now.

If anyone hasn't had a chance yet (45mins long) I'd highly recommend it.

Thanks for the link

Not sure to be honest.

I still need to take and pass my CCNA exam after attending a week long bootcamp. Stumbling block is the stuff I don't do on a regular basis like frame-relay etc.

Once I've got that out the way I want to start hitting the security training/certs. Can't decide where I want to start, juggling between C|EH, GCIH, OSCP, all depends on funding, timing and time off work. So I'm left learning what I can in my spare time.

Any advice on where to start first? (would like the CISSP, but don't have the required experience yet so that will have to wait)

Cheers BillV,

already got that one, guess I'm good to go....