.

Finally took the plunge, started 08/05/12

<<

sh4d0wmanPP

Newbie
Newbie

Posts: 42

Joined: Sat Aug 11, 2012 6:42 am

Post Thu Aug 23, 2012 3:34 am

Re: Finally took the plunge, started 08/05/12

@hayabusa would you mind telling some about the OSCE track? As I understand it this track is mostly about advanced exploit development techniques but that is all I can find.
EXIN ISO/IEC 27002: ISF & ISMAS, ITIL Foundation, Comptia Security+, CCNA, CCNA Security, Wip: OSWP
<<

YuckTheFankees

User avatar

Sr. Member
Sr. Member

Posts: 332

Joined: Fri Apr 08, 2011 3:07 pm

Post Thu Aug 23, 2012 3:43 am

Re: Finally took the plunge, started 08/05/12

http://www.offensive-security.com/infor ... ed-expert/

What questions do you have?

Have you passed the OSCP?
OSCP in progress
<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Thu Aug 23, 2012 6:23 am

Re: Finally took the plunge, started 08/05/12

The day you stop learning is the day you start becoming obsolete.
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Thu Aug 23, 2012 7:32 am

Re: Finally took the plunge, started 08/05/12

Easier to explain something, or discuss, if there are some 'more specific' questions...  (sorry, but you need to give me something to work with)
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Thu Aug 23, 2012 7:37 am

Re: Finally took the plunge, started 08/05/12

I'll start with a couple of generalities:

CTP / OSCE teaches more about combining attack vectors in creative ways, to reach the end goal.

They do discuss 0-day bug hunting / exploit development, and also touch on some more web exploitation techniques, in ways one might not have thought to use them.
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

sh4d0wmanPP

Newbie
Newbie

Posts: 42

Joined: Sat Aug 11, 2012 6:42 am

Post Thu Aug 23, 2012 8:33 am

Re: Finally took the plunge, started 08/05/12

Read that file already yes. I was just curious what you thought of the course, does it complement OSCP well? Did you find OSCE more difficult?

Here a few other questions I came up with after thinking a bit more:

Web Application:
- how deep does it go? Since they are in the process of developing a stand alone track as well. Will I learn anything new if I master the techniques of the "Web Application Hacker Handbook"?

0Day / Advanced Exploitation:
- Windows only?
- Does it touch on 64-bit?
- If I am correct, OSCP goes just in the basics of buffer overflow exploitation. Does OSCE handle things like SafeSEH/DEP/ALSR bypass, heapspraying? A yes or no is enough, no details needed if sharing is forbidden by Offensive Security.
EXIN ISO/IEC 27002: ISF & ISMAS, ITIL Foundation, Comptia Security+, CCNA, CCNA Security, Wip: OSWP
<<

m0wgli

User avatar

Sr. Member
Sr. Member

Posts: 308

Joined: Fri Jul 20, 2012 3:34 pm

Post Thu Aug 23, 2012 8:44 am

Re: Finally took the plunge, started 08/05/12

sh4d0wmanPP wrote:@hayabusa would you mind telling some about the OSCE track? As I understand it this track is mostly about advanced exploit development techniques but that is all I can find.


There is also a review on here for it:

http://www.ethicalhacker.net/content/view/342/24/
Security + | OSWP | eCPPT (Silver & Gold) | CSTA
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Thu Aug 23, 2012 10:16 am

Re: Finally took the plunge, started 08/05/12

m0wgli wrote:There is also a review on here for it:

http://www.ethicalhacker.net/content/view/342/24/


<nods head> ...and Ryan's review was a good one.
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

sh4d0wmanPP

Newbie
Newbie

Posts: 42

Joined: Sat Aug 11, 2012 6:42 am

Post Thu Aug 23, 2012 10:25 am

Re: Finally took the plunge, started 08/05/12

Thanks, I did throw OSCE in the search here but did not get this article. This answers most of my questions. Already played the reg challenge but first have to complete OSCP hehe.
EXIN ISO/IEC 27002: ISF & ISMAS, ITIL Foundation, Comptia Security+, CCNA, CCNA Security, Wip: OSWP
<<

cd1zz

User avatar

Recruiters
Recruiters

Posts: 566

Joined: Sun Oct 03, 2010 9:01 pm

Post Fri Aug 24, 2012 3:50 pm

Re: Finally took the plunge, started 08/05/12

<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Fri Aug 24, 2012 8:19 pm

Re: Finally took the plunge, started 08/05/12

cd1zz wrote:Here is my review, from last May.

http://www.networkadminsecrets.com/2011 ... xpert.html


Nice write-up. I'm curious what percentage of people pass on the first attempt. It seems like nearly everyone I know semi-personally that has one has come up short the first time around (which really adds to the intimidation factor, especially considering how much outside prep you did beforehand).
The day you stop learning is the day you start becoming obsolete.
<<

cd1zz

User avatar

Recruiters
Recruiters

Posts: 566

Joined: Sun Oct 03, 2010 9:01 pm

Post Fri Aug 24, 2012 8:32 pm

Re: Finally took the plunge, started 08/05/12

It's got to be a low number. I have yet to talk to anyone who passed on their first try.
<<

S3curityM0nkey

User avatar

Jr. Member
Jr. Member

Posts: 89

Joined: Mon May 16, 2011 6:47 pm

Post Sat Aug 25, 2012 12:05 am

Re: Finally took the plunge, started 08/05/12

The fact that it has such a low pass rate makes it all the move valuable I think. It means that you can't just read a couple of brain dumps and pass the exam.
<<

sternone

Full Member
Full Member

Posts: 129

Joined: Tue Aug 07, 2012 1:31 am

Post Sun Aug 26, 2012 9:04 pm

Re: Finally took the plunge, started 08/05/12

I'm reading extra 6 books right now and are taking it more slowly to grasp the information more deeply than presented before taking the OSCP test.

I'm also going to extend my lab time huge :-)

I'm figuring it's the only way. Script kidding isn't going to work in that test imho.
Try harder....hmpf!!
<<

Jamie.R

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Mon Aug 06, 2012 9:57 am

Location: UK

Post Mon Aug 27, 2012 5:48 am

Re: Finally took the plunge, started 08/05/12

Offensive course always seem to get great reviews I guess that why so many people want to jump in and do them.

The course also seem really well know all over the land what makes it appearing on your CV pretty good for job applications.

This is course that I really plan on doing sooner rather than later just hope I pass as it seems like a right challenge.
| OSWP | eCPPT Silver and Gold | eWPT |

I'm an InterN0T'er
PreviousNext

Return to OSCP - Offensive Security Certified Professional

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software