.

SEC560

<<

Bushman4u

User avatar

Newbie
Newbie

Posts: 15

Joined: Fri Jul 09, 2010 4:05 pm

Post Fri Oct 01, 2010 6:29 pm

SEC560

Need help and couching on how to pass this exam. I just attended the live training in Vegas and have registered for the exam and the OnDemand Bundle which gives me access to the same training material and mp3s for 4 months.
But I am still nervous about this cert and would appreciate any help/tips on how to be well prepared to pass this exam. If you would like to share your indexes, tips, cautions, etc, please feel free to email me at yuguwani@hotmail.com

Thank you in advance.
Certifications: CISSP, GISP, GPEN, GAWN, MCSE, Network+ and A+
<<

COm_BOY

User avatar

Full Member
Full Member

Posts: 129

Joined: Tue Feb 03, 2009 10:40 am

Post Fri Oct 01, 2010 8:44 pm

Re: SEC560

cant help in SANS case but I can tell you that your email box is going to receive a lot of spams !!!  ;D
It has become appallingly obvious that our technology has exceeded our humanity.
<<

tturner

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Thu Jun 26, 2008 4:50 pm

Post Fri Oct 01, 2010 10:11 pm

Re: SEC560

You should be fine. At the time I sat the exam I had not done any pentests on a professional level, just dorking around in my home lab and whatever meager skills I had picked up over the years. Thankfully that is no longer the case for me but I don't know if the cert has anything to do with that or not.

I facilitated the class so missed some material, threw the mp3 files on my Zune and bombarded my ears with Skodotunes for about 60 days of commute, and worked through the Ondemand sections once, making sure as I did the labs that I wasn't just typing commands. Make sure you understand what you are doing and why and could modify the techniques accordingly to fit the target environment. Then I flipped through the books to create an index on front cover of each book (I just wrote in the white space on cover) so I knew what topics were in which one. The table of contents is pretty good once you flip the right book open. Took the 2 practice tests and aced the exam. Just use the materials and you will be fine.
Certifications:
CISSP, CISA, GPEN, GWAPT, GAWN, GCIA, GCIH, GSEC, GSSP-JAVA, OPSE, CSWAE, CSTP, VCP

WIP: Vendor WAF stuff

http://sentinel24.com/blog @tonylturner http://bsidesorlando.org
<<

impelse

Hero Member
Hero Member

Posts: 585

Joined: Mon Feb 16, 2009 3:40 pm

Post Fri Oct 01, 2010 10:48 pm

Re: SEC560

Congrats
CCNA, Security+, 70-290, 70-291
CCNA Security
Taking Hackingdojo training

Website: http://blog.thehost1.com/
<<

Bushman4u

User avatar

Newbie
Newbie

Posts: 15

Joined: Fri Jul 09, 2010 4:05 pm

Post Fri Dec 03, 2010 2:55 pm

Re: SEC560

Thank you!!

Just wanted to drop this thank you email for those of you who have taken their time to answer my concern and I do appreciate your humble advise.

I am gearing up for this and becuase of you honest encouragement, I feel better.

I will keep you updated.

Bushman
Certifications: CISSP, GISP, GPEN, GAWN, MCSE, Network+ and A+
<<

eccodom

Newbie
Newbie

Posts: 5

Joined: Thu Jan 17, 2008 7:00 pm

Post Fri Dec 03, 2010 4:19 pm

Re: SEC560

I just passed the GPEN. As mentioned above, an index helps a bunch. I created a spread sheet with the following categories and printed it out. Book #, Category Topic, Sub Category, Tool, Page #. For example;
Book 4 - Password Attacks - sysinternals -psexec, sc, net use, schtaks, wmic - 5. I know a lot of people that use colored page labels and go through the book and label every 10 pages or so, I've found a printed spreadsheet is quick and less time consuming. Good luck.
-Harms
<<

tturner

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Thu Jun 26, 2008 4:50 pm

Post Fri Dec 03, 2010 5:34 pm

Re: SEC560

Yeah I did the colored Post-it notes as tabs when I did GSEC and it was a lot of work and really screws up how they sit on the shelf. It worked for me but the last few certs I've gotten lazier and lazier with the indexes. The key is whatever you do, create your own index. I know guys who tried to use someone elses and it just didn't make sense. You can't index every single topic or tool so people tend to document the areas they are less strong on so you might not have the entries you need. Even if you find a really good index, making it yourself does a good job of helping you remember where stuff is and what's important for the exam.

For the most part, most of the GIAC exams are pretty easy if you understand the material and have a good index. Something else I've done that is helpful is printing out man pages for commonly used tools. These exams like to ask questions about which switch you use for command syntax stuff.
Certifications:
CISSP, CISA, GPEN, GWAPT, GAWN, GCIA, GCIH, GSEC, GSSP-JAVA, OPSE, CSWAE, CSTP, VCP

WIP: Vendor WAF stuff

http://sentinel24.com/blog @tonylturner http://bsidesorlando.org
<<

caissyd

User avatar

Hero Member
Hero Member

Posts: 894

Joined: Thu Dec 31, 2009 11:20 am

Location: Ottawa, Canada

Post Mon Dec 06, 2010 5:12 am

Re: SEC560

@Bushman: Have you tried the practice exams? They are pretty representative of the "real" one. They will tell you if you are ready. These practice exams will also give you confidence...
OSCP, GPEN, GWAPT, GSEC, CEH, CISSP
(aka H1t.M0nk3y)

Return to GPEN - GIAC Certified Penetration Tester

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software