I am more interested in Network part of Security. For now most of my learning part is going on self pace, thanks to my college library for having awesome books.
One major reason that I aint going for any certs now is not having $$ :P
I can be pretty stingy on things ;D but I really don't mind spending money on two things:
- Good Documentation
My path is some thing like:
- Linux Skills (Self pace) - there is a huge amount of material online.
- Protocols (TCP/IP...) - some good books like TCP/IP Illustrated
- nmap - lucky to have Fyodor's book at library
- Wireshark Skills - Wireshark has really nice user guide and wiki.(and lots n lots of practice)
- Higher concepts like Firewall's and IDS
- Python Skills - there are plenty of good books(some are free), this is something I have been focusing mostly on because at some point you feel like you can't turn your ideas into code. So my focus is more on coding.
This list and some others will keep me busy for quite some time.
My certification path would be something like:
CWNA - To get started with wireless things.
OSWP - getting deeper into wireless security
OSCP - Once I am comfortable with the above skill (and some other skills) I am going for OSCP. I am not in for eCPPT, as it covers almost the same stuff like OSCP except it focuses more on Web App's security.
Coming to your point,
"Linux +" skills will be pretty much fine for going further into security. if you have time & bucks, you can consider RH certs.
In the wireless portion, I would rather suggest to focus on CWNP certs because they are vendor neutral certifications.
After CWNP certs, as your focus is wireless you can go for OSWP, that course is pretty nicely laid out. SANS certs are good but they come with a big $$, I feel like Offensive Security certs come with a good learning curve and are not too pricey for what they offer. GPEN would be a nice place to start with.
eCPPT is good with the Web Apps security modules and you can also take a look at "So You Want To Be A Web App Pentester" by Joe McCray.
Last edited by hurtl0cker
on Sat Oct 22, 2011 11:10 pm, edited 1 time in total.
“Knowing is not enough; we must apply. Willing is not enough: we must do.”
- Bruce Lee