Thanks for the above info guys.

On another note, is there an official reason why the EC-Council have scrapped Podcasts as a method of gaining points?  

Hi guys,

I've had my eye on this course for too long now, and intend to have a crack at it in January. One question though, is the course something I can do 100% in my own time? Or will I need to be available at specific times for parts of the training?

Also is it formally still called OSCP? I remember hearing something about name changes to penetration testing with backtrack or something?

Thanks

Hi,

Can someone please confirm how many points I need to get per year to maintain my CEH?

I recently hit the 120 points mark after 1 year of certification, and the ECE page says: "Congratulations! You have successfully met the minimum requirements of 120 credits to maintain EC-Council certifications."

I guess im not allowed to sit back and do nothing though :p? Will the ECE system let me know when I need to add x number more points per year? I did the exam in 2008, so I should think it expires in 2011 and i have the 120 points to continue that for another 3 years after that, so my second question, is there a payment for certification renewal or is points good enough for them?

Thanks alot

I recommend covering what you existing experience is in the area, your interest in the syllabus topics, and how the cert is related to your future (i.e what you want to do) and how it will be beneficial to you. There is not a great deal more you can say really.

Yep, if they give you the ok then you get given an exam code which is valid for 3 months IIRC. I spent 2 months teaching myself the course then did the exam.

I did it in the UK without the official training, I just wrote them a nice letter explaining how the CEH would be beneficial to what im doing (Im currently a student), maybe I was lucky but if you don't ask you don't get

Old.

Generally im quite happy with the ECE system, it seems a good way of maintaining a certification.

The only addition I would like to see on the delta system is exact dates a cert expires and needs renewing, as far as i can see this isn't listed at all.


Also, Is there a limit on how many books or podcasts you can use to build up credits?

I am currently doing a computer science degree full time, so it limits my options for building up credits a bit. Im not sure this counts as higher education, as it isn't directly security related?

What are you compiling the program with? If your using visual studio its probably compiling with /GS switch which will build in buffer overrun protections into your code.

Aside from that I would guess its some protections in XP, I don't think XP includes ASLR which would be giving you issues, but im pretty sure it has Data Execution Prevention built in from SP2, maybe this is giving you issues.

I would suggest for learning purposes, go to an unpatched XP SP0 installation, or better a linux box.

Thanks very much, very helpful, I will have a read through the sections of Applied Cryptography you mentioned.

Hi,

I am making some crypto software for a uni project, I'm using symmetric encryption (block ciphers), and I need to make informed decisions that i can back up with facts on which algorithms to include in the software.

I have decided to offer more that one choice, because if the ciphertext is intercepted it would not be 'as easy' to determine the algorithm associated with it if there's multiple possibilities.

Off the top of my head, I can think of performance and keysize as reasons to pick one algorithm over another. Is there anything else I can use to decide? Are there any tools or papers on algorithm performance?

Off the top of my head I would like to use AES-256, Blowfish-448 and maybe RC6-2040? Im basing that purely off the fact they have decent key size options, and have had been in the public domain for a fair while. Is there anything else that I can use in a report to back up my reasoning? Like why I chose Blowfish over Twofish or say CAST-256? There are no end of options anyway.

Thanks for any pointers,

Old.

Hi,

Please can someone clarify for me what I have to do in order to maintain my CEH cert?

I have registered on the ECE Delta System, which says i need 120 credits to maintain my cert, so do i have to get these credits and pay to do the exam again?

Or is it a choice of either taking the exam again, or having the 120 points? And is it after 2 years i have to match this critica?

Thanks for any advice,
Jack

Hi guys,

Just wondering, are the CEH v5 self study modules examined, or are they purely designed as extra material that you should be aware of?

Thanks,
Jack

Hi,

I have just been given a code to register for the CEH exam at a test centre, and take the self study route.

Couple of questions i have, How long is this code valid for, ideally now i know i can take the exam, i would like to spend 6 months or so studying now, then register for the exam?

Also is version 6 of the exam likely to be released within the next 6 months? Or am i find using all the current material.

Many thanks,