Home
Calendar
Certifications
Columns
Features
Forum
Resources
Vitals
Latest Additions
April 2013 Free Giveaway Sponsor - eLearnSecurity
Human Intelligence to Navigate the Security Data Deluge
February 2013 Free Giveaway Winner of SANS CyberCon Training
Interview: Bugcrowd Founders on Herding Ninjas for Crowdsourced Bug Bounties
Network Forensics: The Tree in the Forest
March 2013 Free Giveaway Sponsor - Mile2
Book Review: Violent Python
February 2013 Free Giveaway Sponsor - SANS
Holiday 2012 Free Giveaway Winner of Metasploit Pro by Rapid7
Course Review: SANS FOR408 Computer Forensic Investigations – Windows In-Depth
The Security Consulting Sugar High
Tutorial: Fun with SMB on the Command Line
Interview: Ilia Kolochenko, CEO of High-Tech Bridge
October 2012 Free Giveaway Winner of LearningGate Training
The Broken: Assessing Corporate Security in 2012 to Make a Better 2013
EH-Net Login
Welcome Guest.
Username:
Password:
Remember me
Lost Password?
No account yet?
Register
Who's Online
We have 75 guests and 2 members online
You are here:
Home
Ethical Hacking Discussions and Related Certifications
Network Pen Testing
OSCP - Offensive Security Certified Professional
Finally took the plunge, started 08/05/12
EH-Net
May 21, 2013, 10:13:38 AM
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email?
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
News
: Go back to The Ethical Hacker Network Online Magazine
Home Page
Home
Help
Calendar
Login
Register
EH-Net
>
Ethical Hacking Discussions and Related Certifications
>
Network Pen Testing
>
OSCP - Offensive Security Certified Professional
(Moderator:
don
) >
Finally took the plunge, started 08/05/12
Pages:
1
2
3
[
4
]
5
6
Go Down
« previous
next »
Print
Author
Topic: Finally took the plunge, started 08/05/12 (Read 18408 times)
0 Members and 1 Guest are viewing this topic.
sh4d0wmanPP
Newbie
Offline
Posts: 42
Re: Finally took the plunge, started 08/05/12
«
Reply #45 on:
August 23, 2012, 03:34:55 AM »
@hayabusa would you mind telling some about the OSCE track? As I understand it this track is mostly about advanced exploit development techniques but that is all I can find.
Logged
EXIN ISO/IEC 27002: ISF & ISMAS, ITIL Foundation, Comptia Security+, CCNA, CCNA Security, Wip: OSWP
YuckTheFankees
Sr. Member
Offline
Posts: 324
Re: Finally took the plunge, started 08/05/12
«
Reply #46 on:
August 23, 2012, 03:43:30 AM »
http://www.offensive-security.com/information-security-certifications/osce-offensive-security-certified-expert/
What questions do you have?
Have you passed the OSCP?
Logged
OSCP in progress
ajohnson
Recruiters
Hero Member
Online
Posts: 1057
aka dynamik
Re: Finally took the plunge, started 08/05/12
«
Reply #47 on:
August 23, 2012, 06:23:56 AM »
There's also the Syllabus:
http://www.offensive-security.com/documentation/cracking-the-perimiter-syllabus.pdf
Logged
WIP: GCFA |
www.infosiege.net
| @infosiege
The day you stop learning is the day you start becoming obsolete.
hayabusa
Hero Member
Offline
Posts: 1631
Re: Finally took the plunge, started 08/05/12
«
Reply #48 on:
August 23, 2012, 07:32:17 AM »
Easier to explain something, or discuss, if there are some 'more specific' questions... (sorry, but you need to give me something to work with)
Logged
~ hayabusa ~
"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'
OSCE, OSCP , GPEN, C|EH
hayabusa
Hero Member
Offline
Posts: 1631
Re: Finally took the plunge, started 08/05/12
«
Reply #49 on:
August 23, 2012, 07:37:14 AM »
I'll start with a couple of generalities:
CTP / OSCE teaches more about combining attack vectors in creative ways, to reach the end goal.
They do discuss 0-day bug hunting / exploit development, and also touch on some more web exploitation techniques, in ways one might not have thought to use them.
Logged
~ hayabusa ~
"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'
OSCE, OSCP , GPEN, C|EH
sh4d0wmanPP
Newbie
Offline
Posts: 42
Re: Finally took the plunge, started 08/05/12
«
Reply #50 on:
August 23, 2012, 08:33:15 AM »
Read that file already yes. I was just curious what you thought of the course, does it complement OSCP well? Did you find OSCE more difficult?
Here a few other questions I came up with after thinking a bit more:
Web Application:
- how deep does it go? Since they are in the process of developing a stand alone track as well. Will I learn anything new if I master the techniques of the "Web Application Hacker Handbook"?
0Day / Advanced Exploitation:
- Windows only?
- Does it touch on 64-bit?
- If I am correct, OSCP goes just in the basics of buffer overflow exploitation. Does OSCE handle things like SafeSEH/DEP/ALSR bypass, heapspraying? A yes or no is enough, no details needed if sharing is forbidden by Offensive Security.
Logged
EXIN ISO/IEC 27002: ISF & ISMAS, ITIL Foundation, Comptia Security+, CCNA, CCNA Security, Wip: OSWP
m0wgli
Full Member
Offline
Posts: 248
Re: Finally took the plunge, started 08/05/12
«
Reply #51 on:
August 23, 2012, 08:44:29 AM »
Quote from: sh4d0wmanPP on August 23, 2012, 03:34:55 AM
@hayabusa would you mind telling some about the OSCE track? As I understand it this track is mostly about advanced exploit development techniques but that is all I can find.
There is also a review on here for it:
http://www.ethicalhacker.net/content/view/342/24/
Logged
Security + | OSWP | eCPPT | CSTA
hayabusa
Hero Member
Offline
Posts: 1631
Re: Finally took the plunge, started 08/05/12
«
Reply #52 on:
August 23, 2012, 10:16:29 AM »
Quote from: m0wgli on August 23, 2012, 08:44:29 AM
There is also a review on here for it:
http://www.ethicalhacker.net/content/view/342/24/
<nods head> ...and Ryan's review was a good one.
Logged
~ hayabusa ~
"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'
OSCE, OSCP , GPEN, C|EH
sh4d0wmanPP
Newbie
Offline
Posts: 42
Re: Finally took the plunge, started 08/05/12
«
Reply #53 on:
August 23, 2012, 10:25:54 AM »
Thanks, I did throw OSCE in the search here but did not get this article. This answers most of my questions. Already played the reg challenge but first have to complete OSCP hehe.
Logged
EXIN ISO/IEC 27002: ISF & ISMAS, ITIL Foundation, Comptia Security+, CCNA, CCNA Security, Wip: OSWP
cd1zz
Hero Member
Offline
Posts: 561
Re: Finally took the plunge, started 08/05/12
«
Reply #54 on:
August 24, 2012, 03:50:17 PM »
Here is my review, from last May.
http://www.networkadminsecrets.com/2011/05/offensive-security-certified-expert.html
Logged
OSCE | OSCP | GXPN | OSWP | CISSP
http://www.pwnag3.com
http://www.networkadminsecrets.com
ajohnson
Recruiters
Hero Member
Online
Posts: 1057
aka dynamik
Re: Finally took the plunge, started 08/05/12
«
Reply #55 on:
August 24, 2012, 08:19:36 PM »
Quote from: cd1zz on August 24, 2012, 03:50:17 PM
Here is my review, from last May.
http://www.networkadminsecrets.com/2011/05/offensive-security-certified-expert.html
Nice write-up. I'm curious what percentage of people pass on the first attempt. It seems like nearly everyone I know semi-personally that has one has come up short the first time around (which really adds to the intimidation factor, especially considering how much outside prep you did beforehand).
Logged
WIP: GCFA |
www.infosiege.net
| @infosiege
The day you stop learning is the day you start becoming obsolete.
cd1zz
Hero Member
Offline
Posts: 561
Re: Finally took the plunge, started 08/05/12
«
Reply #56 on:
August 24, 2012, 08:32:14 PM »
It's got to be a low number. I have yet to talk to anyone who passed on their first try.
Logged
OSCE | OSCP | GXPN | OSWP | CISSP
http://www.pwnag3.com
http://www.networkadminsecrets.com
SecurityMonkey
Jr. Member
Offline
Posts: 89
Re: Finally took the plunge, started 08/05/12
«
Reply #57 on:
August 25, 2012, 12:05:39 AM »
The fact that it has such a low pass rate makes it all the move valuable I think. It means that you can't just read a couple of brain dumps and pass the exam.
Logged
www.securitymonkey.net
sternone
Full Member
Offline
Posts: 129
Re: Finally took the plunge, started 08/05/12
«
Reply #58 on:
August 26, 2012, 09:04:45 PM »
I'm reading extra 6 books right now and are taking it more slowly to grasp the information more deeply than presented before taking the OSCP test.
I'm also going to extend my lab time huge :-)
I'm figuring it's the only way. Script kidding isn't going to work in that test imho.
Logged
Try harder....hmpf!!
Jamie.R
Sr. Member
Offline
Posts: 429
Re: Finally took the plunge, started 08/05/12
«
Reply #59 on:
August 27, 2012, 05:48:09 AM »
Offensive course always seem to get great reviews I guess that why so many people want to jump in and do them.
The course also seem really well know all over the land what makes it appearing on your CV pretty good for job applications.
This is course that I really plan on doing sooner rather than later just hope I pass as it seems like a right challenge.
Logged
OSWP | Hackingdojo Nidan | eCPPT
Pages:
1
2
3
[
4
]
5
6
Go Up
Print
« previous
next »
Jump to:
Please select a destination:
-----------------------------
EH-Net
-----------------------------
=> Calendar Of Events
===> ChicagoCon 2007
===> ChicagoCon 2008s
===> ChicagoCon 2008f
===> ChicagoCon 2009s
=> Ethical Hacktivism
=> News Items and General Discussion About EH-Net
===> Greetings
=> Special Events
-----------------------------
Ethical Hacking Discussions and Related Certifications
-----------------------------
=> General Certification
===> Networking
===> OS
===> Security
=> Compliance, Regulations & Standards
=> Control Systems
=> Cyber Warfare
=> Forensics
===> CCE / MCCE - (Master) Certified Computer Examiner
===> CHFI - Computer Hacking Forensic Investigator
===> EnCE - EnCase® Certified Examiner
===> GCFA - GIAC Certified Forensics Analyst
=> Hardware
=> Incident Response
===> CSIH - Computer Security Incident Handler
===> GCIH - GIAC Certified Incident Handler
=> Malware
===> Advisories
=> Mobile
=> Network Pen Testing
===> CEH - Certified Ethical Hacker
===> CPTC - Certified Penetration Testing Consultant
===> CPTE - Certified Penetration Testing Engineer
===> CSTA - Certified Security Testing Associate
===> eCPPT - eLearnSecurity Certified Professional Penetration Tester
===> ECSA - EC-Council Certified Security Analyst
===> GPEN - GIAC Certified Penetration Tester
===> OSCP - Offensive Security Certified Professional
=> Physical Security
=> Programming
=> Social Engineering
=> Web Applications
=> Wireless
===> CWNP Certs
===> GAWN - GIAC Assessing Wireless Networks
===> OSWP - Offensive Security Wireless Professional
=> Other
-----------------------------
Columns
-----------------------------
=> Editor-In-Chief
=> Andress
=> Gates
=> Haddix
=> Hadnagy
=> Heffner
=> Hoffman
=> Linn
=> RichM
=> Murray
=> J. Peltier
=> Weidman
=> Wilson
-----------------------------
Features
-----------------------------
=> /root
=> Book Reviews
=> Opinions
=> Skillz
===> Examples
===> May 06 - Star Hacks, Episode V: The Empire Hacks Back
===> July 06 - Hack Bill!
===> Sept 06 - Netcat in the Hat
===> Nov 06 - Hitch-Hackers Guide to the Galaxy
===> Dec 06 - A Christmas (Hacking) Story
===> Feb 07 - Charlottes Web Site
===> April 07 - Microsoft Office Space
===> June 07 - Serenity Hack
===> Oct 07 - Worst. Ethical. Hacker. Challenge. Ever.
===> Dec 07 - Frosty the Snow Crash
===> March 2008 - It Happened One Friday
===> Oct 2008 - Scooby Doo and the Crypto Caper
===> Dec 08 - Santa Claus Is Hacking to Town
===> Feb 2009 - Brady Bunch Boondoggle
===> July 2009 - Prison Break
===> October 2009 - SSHliders
===> December 2009 - Miracle on Thirty-Hack Street
===> December 2010 - The Nightmare Before Charlie Browns Christmas
-----------------------------
Resources
-----------------------------
=> Career Central
===> Looking For Work
===> Looking To Hire
=> Links to cool sites.
=> Mass Media
=> News from the Outside World
=> Tools
=> Tutorials
===> Tutorial Requests
Loading...
Exclusive Deal
SANSFIRE 2013
June 15 - 22
5% Off
w/ Code
:
EHN_5
SANS Deals 4 EH-Netters
5% OFF
Any
SANS Course
in Any Format!
Coupon Code:
EHN_5
Including
SANS Rocky Mountain 2013
&
SANS Boston 2013
Polls
Compared to this year, 2013 will be:
Great!
Better.
About the same.
Little worse.
FUBAR!
Recent Forum Topics
Programming
: Finished Python Course in Codecademy now what?
(12) by
3xban
Network Pen Testing
: AIX Vulnerability Assessments
(1) by
3xban
General Certification
: CPT Practical Submission
(1) by
UNIX
OSCP - Offensive Security Certified Professional
: Failed my first attempt at the OSCP exam
(94) by
azmatt
Tools
: Social-Engineer Toolkit (SET) Version 5.0 “The Wild West” Released
(2) by
m0wgli
Malware
: EICAR?
(3) by
UKSecurityGuy
Advisories
: HTB23154: Multiple Vulnerabilities in Exponent CMS
(0) by
AndyP
Advisories
: HTB23153: Multiple Vulnerabilities in Jojo CMS
(0) by
AndyP
Advisories
: HTB23151: Cross-Site Request Forgery (CSRF) in UMI.CMS
(0) by
AndyP
Tutorials
: Need guidance
(8) by
r0ckm4n
OSCP - Offensive Security Certified Professional
: Class Scheduled 6/8 - Linux n00b
(7) by
Taemyks
OSCP - Offensive Security Certified Professional
: OSCP exam scheduled
(6) by
gbhat
Incident Response
: LinkedIn Forensics
(0) by
AFENTIS_Forensics
General Certification
: Red Team/Blue Team
(1) by
ajohnson
Career Central
: Starter cert?
(3) by
Grendel
Network Pen Testing
: Beginner Ethical Hacker
(1) by
m0wgli
Web Applications
: Nessus and Nikto
(4) by
Seen
Network Pen Testing
: Cracking salted MD5 hash
(4) by
n37sh@rk
CEH - Certified Ethical Hacker
: Passed my C|EH
(3) by
n37sh@rk
Mass Media
: EC-council hacked, irony at his best?
(0) by
j0rDy
Web Applications
: SQL Injection into an INSERT statement.
(6) by
eyenit0
Network Pen Testing
: Solution for sipXtapi INVITE Message CSeq Field Header Remote Overflow
(1) by
m0wgli
Web Applications
: dns
(2) by
H1t M0nk3y
Other
: BSides Boston
(0) by
3xban
Career Central
: InfoSec in Central, FL
(2) by
tturner
Web Applications
: Web vulnerability scanner
(4) by
H1t M0nk3y
EH-Net News Feeds
Latest Additions
Privacy Notice
for TDCC & All Properties
© 2013 The Ethical Hacker Network
Joomla!
is Free Software released under the GNU/GPL License.
Programming : Finished Python Course in Codecademy now what?
