Hi Vp,


GIAC is the organization in relation to the GPEN and GWAPT certifications, while SANS is the organization related to their own courses that prepares students for the GIAC certifications.

GPEN is e.g. associated with SANS SEC560 while GWAPT, is SANS SEC542.

The actual certification is the same no matter where you do a proctored exam. (All GIAC examinations are proctored as far as I know.)

There are pretty much 3 ways to do these courses, where the first one is intensive courses usually lasting 5 full working days, while the next is self-study and the last but not least is mentor sessions where you have to study yourself, but where you meet up with a mentor once or twice a week, to discuss the course material, etc.

If you have a very good base within ethical hacking, both GPEN and GWAPT shouldn't be too hard, however without any study they may be a bit hard to pass, or at least get a good score at. (I could pass both without study, but I did study a few topics briefly to get an acceptable score, which made me able to apply as a SANS mentor.)

Depending on how fast you need the certification, and what kind of learning method you prefer, the prices may vary as well. I haven't attended any SANS courses yet, but I do hold the GPEN certification, and is also a SANS mentor too for both of these courses. (I pretty much know most of the topics, even though mentors that might've not done the course, will be given time to learn these as well.)

So if you choose a SANS mentor, it can vary but generally the mentor should know the material very well, and have a good relevant skill set too.

With SANS instructors, you're guaranteed the highest quality you can get, as these are highly trained and has in some cases done a lot of mentor sessions too.

Good luck with your choice! 

Hi, sorry if my question dont fit here.

I'm planning to take PWB v3 course. MaXe do you think after I pass the certified from offensive security, i can pass GPEN exam too with self study.

Thank.

Thank hayabusa, is good to have an answer from someone who has already passed for that experience.

Can you give me some advice.

for example:
What book can help me?, etc.

Thank againg.

HAHAHAHAHAHAHAHA oks.

Thanks

Would you even ask if I was the mentor?  I'd bring custom labs (for exercises) 



It fits well within this topic imho  I've heard a lot of people was able to pass GPEN after OSCP. Just brush up on the laws (in VARIOUS countries, including USA, UK, Japan, Germany, Canada, and a few more).
When you've done that you tackle some terminology, along with windows post exploitation commands, and of course other topics you may feel weak in as well. (Do a practice exam / test first, and look at the areas you got 2 or less stars in. Those areas are skills you need to improve!)



No problem, I'll think you'll do fine if you just study hard, and when things get tough, you try harder as offsec often says  The key to becoming a pro hacker with a good skillset (get a good base, then specialize in an area), is dedication, ambition and creativity / intuition.

turner... i know GCIA has to be one of them.. the other i am guessing GAWN

am i right? huh huh?

No problem, and good luck! Study hard, and pwn that exam  Just remember it's open book (not "open Internet"), so take notes or index the course material very well, when / if you decide to go for the certification. Also, do 1 or 2 of the practice exams first, so you can get to know your weak and strong points and also follow up on what you may need to know more about, if any topic at all