.

Need guidance

<<

meetjsh

Newbie
Newbie

Posts: 2

Joined: Wed Dec 12, 2012 11:33 am

Post Wed May 15, 2013 10:37 am

Need guidance

Hello friends,

After almost 6 yrs of experience in different domains, I have now landed in Information security field. Where my work is nothing but maintain some documents and copy-pasting some articals from new paper and sending them to other colleagues. I thought , it would be better to know more about Info Security field and make future in this as it sounds interesting to me. I have started it last year already 27 yrs old. I bought few books and used google for it and learned basic of C, Ruby and Python. Which I almost forgotten after 3-4 months. I have tried all possible ways to get more knowdege like reading security+, network +, basic ethical hacking books..Joining a onlline hacking course but all in vain as without practical it will not lead anywhr and theortical part will drained away from mind after somtime.finaly I m here... My question are

I decided to go for EC council CEH exam..going to take one more online course as I dont have any practical knwldge.. i thnk it migt help..
could someone please let me know if there is any other certificate which has same or better value than this and reasonable to giv a try.

Sould I still concentrate on programing as I think without practical it is no use...
How to get a job in this field which keep me busy a bit in technical issue so i can learn and apply the techniques which i am using in net.

Is there any online Skype, gtalk comunity who worked together on inforamtion security projects and ready to help new comers.. I m in Germny..

Would be very thankful for your suggestions..
Regards,
meet
<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Wed May 15, 2013 11:12 am

Re: Need guidance

Look at the courses from eLearnSecurity and Offensive Security.

Also, look into setting up a virtual network where you can create vulnerable virtual machines to practice on. You will indeed lose this knowledge unless you work with it, so you need to keep active.

Welcome to the forums.
The day you stop learning is the day you start becoming obsolete.
<<

n37sh@rk

User avatar

Jr. Member
Jr. Member

Posts: 70

Joined: Thu Jan 24, 2013 1:07 pm

Location: Anywhere

Post Wed May 15, 2013 2:56 pm

Re: Need guidance

ajohson is correct Offensive Security and eLearn Security are both great places Hacking Dojo also has an online hacking lab environment. I just took the class from InfoSec institute for the Ethical Hacking it gives you CPT and C|EH I passed the C|EH and am currently finishing the pratical for the CPT. If you can afford to take a call online that's not a bad one at all. Other wise keep reading and welcome!
C|EH,CPT
<<

UKSecurityGuy

User avatar

Jr. Member
Jr. Member

Posts: 88

Joined: Wed Mar 27, 2013 10:51 am

Post Thu May 16, 2013 3:50 am

Re: Need guidance

I'll backup aJohnson's recommendation of a virtual vulnerable network.

Once you've created a network, create a flaw in it, and then exploit that flaw to gain your goal. Document the entire process so you can refer back to it repeatedly.

I personally prefer creating vulnerable networks that are vulnerable due to misconfiguration rather than software with holes in them. Holes get patched, but misconfiguration almost never gets changed until someone points it out.

Theres nothing like knowing exactly how a flaw is created to understand (and remember) how to exploit it.
<<

Grendel

User avatar

Full Member
Full Member

Posts: 246

Joined: Thu Aug 28, 2008 8:48 am

Location: Colorado Springs, CO

Post Thu May 16, 2013 6:45 pm

Re: Need guidance

n37sh@rk wrote:Hacking Dojo also has an online hacking lab environment.


Yes, we have an online lab for students, but check out the "Media Page" on the HackingDojo.com site as well for information and targets to set up the virtual hacking lab, if you're unfamiliar with this concept:

http://hackingdojo.com/dojo-media/

There are some of my conference talks on that page as well, but look for the one titled "Penetration Test LiveCDs – DefCon 15" for a more in-depth discussion of LiveCDs used for pentesting labs. There is a free video on setting up a lab here:

http://hackingdojo.com/downloads/videos/virtual_lab/

Enjoy!
- Thomas Wilhelm, MSCS MSM
ISSMP CISSP SCSECA SCNA IEM

Web Site:
  • http://HackingDojo.com
Author:
  • Professional Penetration Testing
  • Ninja Hacking
  • Penetration Tester's Open Source Toolkit
  • Metasploit Toolkit for Penetration Testing
  • Netcat Power Tools
<<

meetjsh

Newbie
Newbie

Posts: 2

Joined: Wed Dec 12, 2012 11:33 am

Post Fri May 17, 2013 4:00 am

Re: Need guidance

Thanks a lot for prompt replies..
Could you guys please provide you suggestion on below points..

should I continue with Programing lang or concentrate on hacking tools and other hacking things more?
Would it be correct for a person who does nt have any networking or IT background to start with CEH .. I think i can pass that exam after few months of preparation?

Or will it help me out to get entry level job in pen test or hacking field?

Thnaks
<<

Grendel

User avatar

Full Member
Full Member

Posts: 246

Joined: Thu Aug 28, 2008 8:48 am

Location: Colorado Springs, CO

Post Fri May 17, 2013 2:33 pm

Re: Need guidance

You can get a job in the pentesting field with no pentesting experience, but harder to do without IT or networking - not impossible.
Be aware that the CEH will get you past the HR filters when applying for a job, but means almost nothing to a hiring manager who is more interested in your ability to use a methodology, your knowledge of protocols and how to exploit them, and your fu with the different tools. That said, get your CEH but spend most of your time learning how to pentest, not just how to use the tools.
- Thomas Wilhelm, MSCS MSM
ISSMP CISSP SCSECA SCNA IEM

Web Site:
  • http://HackingDojo.com
Author:
  • Professional Penetration Testing
  • Ninja Hacking
  • Penetration Tester's Open Source Toolkit
  • Metasploit Toolkit for Penetration Testing
  • Netcat Power Tools
<<

impelse

Hero Member
Hero Member

Posts: 585

Joined: Mon Feb 16, 2009 3:40 pm

Post Fri May 17, 2013 11:43 pm

Re: Need guidance

it takes sometime to learn pentest, it is constant process until became familiar.

Use tools, build your own lab, practice attacking a server in your lab/or other lab, etc, etc.

Remember learn to walk before running, so keep learning the base, CEH is a good knowledge, but the other training mention here are good to really acquire skills.
CCNA, Security+, 70-290, 70-291
CCNA Security
Taking Hackingdojo training

Website: http://blog.thehost1.com/
<<

rockman

Full Member
Full Member

Posts: 104

Joined: Sun Apr 06, 2008 12:38 pm

Post Sun May 19, 2013 10:25 pm

Re: Need guidance

Some good advice from the others. I have taken courses from eLearnSecurity, Offensive Security, Hacking Dojo (before it was called Hacking Dojo), and a CEH course. I learned the least from the CEH course. The CEH course taught me how to use individual tools, but not putting it together using a methodology. These other courses go beyond just teaching you the tools. I would recommend starting with eLearnSecurity or Hacking Dojo and Offensive Security after you have a better understanding of pentesting.
CISSP, IAM, working on OSCP
<<

hanyhasan

User avatar

Newbie
Newbie

Posts: 17

Joined: Fri May 17, 2013 12:09 pm

Post Wed May 22, 2013 1:33 am

Re: Need guidance

Hi , take some time and watch this webinar from elearnsecurity by Armando .
http://www.elearnsecurity.com/collatera ... beginners/
..
It will answer all your question in you head, its almost 1 hour . i download it convert it to mp3 so i listen it like 3 or 4 times then i decide what i want be in " info sec" .

Return to Tutorials

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software