Congrats cr1p70 !

Just for my own curiosity, why do you want to do CEH ??

Thanks for the story.

I believe that the average quality of security pros is not increasing. The problem is that they just don't keep the peace witht the advances in the field. I know is hard, and I know that it requires a lot of effort, but the ones passionate about this will pay the price.

I am just looking arround me and... things are not that good. I don't want to go into details, not now.

I love this forum 

Try editing the "virtualHW.version =" line in the .vmx file to your version.

It worked. Thanks !

I knew that must be something simple and that some smart guy on EHnet will figure it out.

I downloaded the VMWare image. When I tried to open it using my VMware Workstation 8.0.4 on Win 7 pro 64 bits I received the following error.

"The configuration file "D:\VMware\kali-linux-1.0-i386-gnome-vm\kali-linux-i386-gnome-vm.vmx" was created by a VMware product that is incompatible with this version of VMware Workstation and cannot be used.

Cannot open the configuration file D:\VMware\kali-linux-1.0-i386-gnome-vm\kali-linux-i386-gnome-vm.vmx."

"Cannot find a valid peer process to connect to."

I'll try at home with a newer version of VMware.

Like anything, it's about the money. China is about to overtake the US as the largest economy in the world. The have been doing it by stealing, manipulating currency, horrible labor practices as well as cyber warfare... you name it, China is doing it. This is why it always goes back to China.

<rant>I just wish we had the balls in the US to not only fight back but also call a spade a spade. China would not be in the position they're in without the US. So what are we so afraid of and why can't our leaders not only take action but also speak it outloud? Instead we get a bunch of wimps talking about trying to emulate China's economic model. Why? Because they say it's been successful. So are we willing to go down that path just to beat China at it's own game? That's so far beneath us and what we stand for as a freedom loving republic. We were number one by a long shot without having to emulate a Socialist country. If we just stand up and fight back, we can be again.</rant>

I'm just going to stop there before I get too heated.

Don

I understand your frustration, but the problem is that without the $$$ from China, US will go broke in a month.

There is a very interesting series of books - Aftershock (Aftershock: Protect Yourself and Profit in the Next Global Financial Meltdown , and The Aftershock Investor: A Crash Course in Staying Afloat in a Sinking Economy ). Read them and you'll understand why they are so gentle with the chinese. The leaders love power and they don't want to loose it (a big crash will make many people loose their seats).

Another interesting read is "Bright-Sided: How Positive Thinking Is Undermining America ". Read it and you'll understand why we are here, in this bad economy, whith these not so good managers and leaders.

Thanks!

Sounds promising. I'm just wondering when I'll have time for this one, too

You know what I mean 

w00t! w00t!

Congrats!

It's Saturday, so .. I suppose you're not working

I love this site because you can find a little bit of everything.

You can find success storiest that motivates you, you can find different technical discutions, you can find help, and, most important, you can really find decent smart guys to talk to.

Have a nice year my EH friends!

I see that nobody commented on the movie. Last night I watched it with my wife. Here is my opinion about the movie.

The plot is very bad. The story have potential, but they didn't make to the expectations.
The actors play really well, the images are nice, but ... not enough.

My wife didn't like it at all. Also, because it is only 35 minutes it ended when we expected to start the real action.

From a security perspective it really sucks. There are no really hacks. The only credible hacks are a guy who previously (not during the movie) planted some logic bombs.

The rest is … bad. Using metasploit windows payloads to hack an iphone, using windows commands to see the processes on the same iphone. Actually, except for that iphone there are no other hacks, no remote pwn, nothing.

Conclusion: Save your money!

Thanks for the answers!

I'll think about your opinions.

Hi Jim,

Thanks for the answer.

My idea is not to reduce the retention period, but to give an extra argument to get rid of many useless alerts. If they have to keep the logs for 7 years (as an ex), they must comply, but keeping garbage for 7 years...

Also, it will be a very useful exercise for all the analysts (and not only), exercise that will make them think twice before using all the default alerts.

I'll try to be modest

- GFOR
- GCFA
- GREM
- GCIA
- GXPN
- SPSE during the summer

In the q4 probably OSCP

You know the saying "Aim For The Stars, If You Fail, You'll Land On The Moon."

I would say that it is better to start with 503. It will give you a good foundation in network intrusion analysis. Then, when you'll master this level you can go to the next one.

What's your goal?