.

Where to begin this....?

<<

Se7enisLucky

Newbie
Newbie

Posts: 1

Joined: Tue Oct 12, 2010 9:20 pm

Post Tue Oct 12, 2010 9:42 pm

Where to begin this....?

Well, Hello there everyone,
I'm a teenager who loves computers, and I have a project coming up which allows me to pursue anything i want. So... read on :)

So for my Gifted class project, we just pick something, and do whatever we want, then do a huge presentation and etc. This project runs from approximately from December 2010 - July X 2010. So its an extremely large amount of time.

And I am hoping to grab (many not a cert.) but some real-life knowledge of security and etc.

Background info:
I have messed around with BackTrack 4, mostly with the metasploit and messing with my brothers laptop :P, and also seeing how long it would take to crack my wifi. 
So, I was like, WOA, OSCP Cert, awesome, then 9XX Dollars, not so awesome, and my dad said if i showed dedication, then he would let me get the course, to grab up a OSCP ( and preferably onwards to the OWSP and other cert.'s) but, like my dad said, i need to show dedication.

Where do i START?
Like, I know how to use a computer, much better than my brother, but in terms of security, hardly any knowledge. I made my wifi network better by using IPTables in the linux distro my dad had on his main pc, i think it was some form of Red-Hat.

So, which cert. should i go for FIRST?
What books should I read BEFORE going for the even FIRST cert.?
What should i be comfortable with before going for the OSCP and etc.

Any and all knowledge would be appreciated!
Thanks all.
<<

COm_BOY

User avatar

Full Member
Full Member

Posts: 129

Joined: Tue Feb 03, 2009 10:40 am

Post Tue Oct 12, 2010 10:17 pm

Re: Where to begin this....?

First of all welcome to EH . Since you are starting your career I would like you too watch the market closely since there are quite some problems with jobs out there . I know couple of people who are doing OSCE or other related certifications who are idle or doing just basic level jobs .... when it comes to the job market you should know a couple of things apart from OSCP course outline . So you must keep this thing in mind because there are a lot of people jumping into this with a hope they would be able to support families nicely which is wrong I believe .


When it comes to OSCP it is a certification with some excellent technical stuff , the prerequisites mentioned are not much in the website but I must tell you that there are couple of knowledge required to go through this including but not limited to Linux, DNS , DHCP , Firewalls , Python/Perl ( optional ) , tcp/ip , content inspections, assembly . Having knowledge of these stuff will help you go through the course easily since these things are normally covered in the dark side of networking . I would also like to add at this point that OSCP is different then other courses where they wont teach you how to perform all task , rather they would just give you an intro and you need to do a lot of research . Research is not that hard but since internet is changing day by day and there are new things popping up each day there are times when solutions doesnt works or scripts dosent works etc. so be prepared for that


When it comes to certification I would highly recommend the Security+ by Comptia depending on the factor where you live since Comptia is much recognized in USA and other Europe rather then Gulf region . There days there are couple of free stuff coming out on almost every topic ( basic - intermediate ) , so you can check them out even using youtube or google videos for reference which would save you a lot of $$$ . Having some Cisco Security , Juniper Security , Microsoft Security certs along with OSCP helps since you need to think out of the box when learning in this course . And there are more jobs of Deployments products and would make you one day a sucessful Network Engineer .



I hope this helps
Last edited by COm_BOY on Tue Oct 12, 2010 10:19 pm, edited 1 time in total.
It has become appallingly obvious that our technology has exceeded our humanity.
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Wed Oct 13, 2010 2:43 pm

Re: Where to begin this....?

If you're going to chase the OSCP, you'll probably going to need to know a lot. Read some of the stuff that's located elsewhere on Ethical Hacker:

http://www.ethicalhacker.net/content/view/119/3/
http://www.ethicalhacker.net/content/view/272/24/ (part 1, 3 more parts but you'll have to find them. ;) )

The OSWP is cheaper, focused on Wifi, and that bad of an intro course. You have to have more equipment at home.

Something else to look at would be Tom Wilhelm's book: http://www.amazon.com/Professional-Pene ... 1597494259
OSWP, Sec+
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Tue Oct 19, 2010 11:02 am

Re: Where to begin this....?

Welcome.

Something that struck me immediately was that your Dad is running Linux on his main computer. Sounds like he's a techie and willing to support you if you show initiative. Not knowing more, I would ask him to be your mentor. If he's not that much of a techie, then he might be a great partner in your learning, as it may be something he's always wanted to do.

Check out the pinned topics in the Network Pen Testing Board. Lots of detailed info on where to start.


In a nutshell, learn the basics... OSs, TCP/IP, programming in something easy at first like Python. Then take that base knowledge and keep building on top of it. You may even want to start with CompTIA certs like Network+, Linux+ and Security+. Then try something like the Windows 7 cert and then Cisco CCENT. Even if you don't take the actual exams, at least you're giving yourself a study plan. Then try the book Hello World! Computer Programming for Kids and Other Beginners.

That's 6 books. If you do a book a week (plus a little extra time per book just in case), you'll be ready to start hacking with a much better level of understanding during the Christmas break. That would also be plenty to show your Dad you're serious about OSCP. But I would strongly consider making OSCP your ultimate goal for the end of your project in July. It is not easy.

Good luck and keep us posted. We're here to help,
Don
CISSP, MCSE, CSTA, Security+ SME

Return to General Certification

Who is online

Users browsing this forum: No registered users and 2 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software