SANS GXPN Review

[cd1zz]

FWIW
http://www.pwnag3.com/2012/10/gxpn-review.html

[azmatt]

Congrats!!!!

I took my first GCIH practice test yesterday and take the real one in two weeks so I'm in a SANS mood

[MaXe]

Grats  I look forward to read the review 

[UNIX]

Nice review - congrats, cd1zz!

What's next?

[ajohnson]

Nice review - congrats, cd1zz!

Yes, congrats and thanks. As someone who was on the fence as to whether I should pay for this myself, your feedback was definitely appreciated.

What's next?

Corelan

[SephStorm]

What I really appreciated was this article: http://www.pwnag3.com/2011/12/my-road-to-pen-testing.html

Thank you.

[cd1zz]

@UNIX ajohnson is right. We're in the process of getting Peter from Corelan to come to the office for a brain melting two day training session.  I've got my eyes set on the OSWE and OSEE, if they don't kill me first.

[UNIX]

Oh, that's great. Please be sure to write a review about his course too, as I'd be interested to read about how it is compared to CTP, AWE, and other similar courses. I'd also be interested to read about how much additional material is covered, which is not already present in his tutorials (like the module on Windows 8 ). He covers quite a few topics in a rather short amount of time, but so far all reviews I've read about his course were very positive.

[cd1zz]

Yeah it's literally going to be crammed into two days, over a weekend. That's in December, I'll let you know...

[Agoonie]

Congrats! Nice review! Always hard at work. When you get the OSEE/OSWE, I would love to know your thoughts on the courses. 

[Dark_Knight]

Congratz...check pm

Couple questions:

Building a Metasploit Module:
The candidate will demonstrate a high-level understanding of how to create a Metasploit module

Q:How does this differ from the msf module in the OSCP?

Python and Scapy For Pen Testers   
The candidate will demonstrate an understanding of the ability to read and modify Python scripts and packet crafting using Scapy to enhance functionality as required during a penetration test
Q: How deep do you into using scapy?

Advanced Stack Smashing   The candidate will demonstrate an understanding of how to write advanced stack overflow exploits against canary-protected programs and ASLR
Q:Is this partial overwrite technique?

In terms of value for money which would you say would better suite a pentester the OSCE or GXPN?

[cd1zz]

Q:How does this differ from the msf module in the OSCP?

I took OSCP v3.0 and I don't recall any msf sections outside of basic usage. This the SANS module is only 15 pages but its more about porting an existing PoC to a msf module

Q: How deep do you into using scapy?

Pretty basic, but it will get you comfortable which is enough to probably do anything you want.

Q:Is this partial overwrite technique?

This is specific to *nix exploitation and walks through defeating Linux SSP. It's pretty cool stuff.

In terms of value for money which would you say would better suite a pentester the OSCE or GXPN?

Good question. I think if your goal is to become a better pen tester, definitely go with GXPN. There are a lot of practical techniques you can immediately walk away with and use. If your goal is to become a better exploit developer, go with both courses...
 

[ajohnson]

Also, if you're looking for more advanced MitM attacks (and haven't seen it already), check out Ryan Linn's DerbyCon talk where they embedded Lua in Ettercap. I haven't had a chance to play around with it personally, but it looks pretty cool.

[3xban]

Nice review man!  SANS courses are pretty decent (they better be for the cost).  That is really the only negative I have on them and the GIAC certs.

[alucian]

woot!

Congrats! This one is no 2 or 3 on my SANS list.

Nice review!