Forum Replies Created
October 27, 2011 at 11:55 pm #43097
October 25, 2011 at 7:40 pm #43095
Don’t be nervous. It wasn’t nearly as bad as I thought it would be. Just relax. Make sure you know your ICMP types and the major NMAP switches. Don’t forget about HPING as well. No real practice tests. If you have any from version 6 just look over those as I was told they are fairly similar from some people that have taken both.
Relax and you’ll do fine. Let me know how it goes.
October 22, 2011 at 2:03 pm #43092
I’m probably going to have to go the MCITP:EA route next for work reasons. After that I think I’m going to start focusing on SANS. More than likely I’ll start with 504. I may do 505 since it will be easier to sell to HR, but we’ll see.
As for the exam. I didn’t have any sims, but I did have some thorough questions. Think of things like, if I run this command with these parameters what output will it show, for both OS functions and tools like nmap, hping, etc. This is where having a lab is beneficial. During my week long course there was a lab open that we messed around with the tools on. Once I got home I recreated that lab on my computer to go a little slower on the stuff I was slower to understand. I work next to some people who use these things daily, so it helped to bounce scenarios off of them if I got stuck.
Like any good infosec person when I asked for direction they just pointed somewhere and say keep going until you see something that sticks out.
October 21, 2011 at 11:40 pm #43089
Thanks! I had a little experience with some of the tools already from following different scenarios (Heorot.net, etc). I was able to convince the company that I work for to send me to training at Global Knowledge in June. I’m surprised that worked because I’m a systems admin and not a infosec guy. It’s amazing what you can get when you ask the right way.
After the week-long training I did independent study with a home lab off and on for a couple of months. I read through the course material slowly one more time before scheduling.
Security is what made me interested in IT in the first place (the movie Hackers, yeah… I know…); so I’ve read about different topics here and there. I didn’t really get more serious into it until I worked under a GSE and began talking to him and his security admin.
Sorry; just realized I gave two sentences of info and a whole bunch of other stuff. Just excited I’m finally learning to crawl in this exciting new world.
Now I’m going to go and hack the gibson.
August 18, 2011 at 8:33 pm #41698
*Puts dunce cap on head*
Dang. Thanks… missed that one.
May 9, 2010 at 11:39 am #31762
How old are you? are you working in the IT security field? have any certificates that prove you know what you are doing? these things influence the outcome of the reply mail (from thanks and plz come consult for us to get lost and you will hear from our lawyers).
another possibility: if you are not in it for the credits report it anonymously. just send an email and let them decide what to do with it…
good luck and let us know what you decide (if possible).
Had decided to do an anonymous email, but didn’t need to…
Guess this person had discovered the problem, or someone else was nice enough to fill them in. To answer the questions above
I am 25
I am working as a SysEng (& IRT Member of the org)
Added certs to my signature.
I was hoping for the former. Don’t really care about the cred, but I did want them to ask for some help so that I could get some real world experience. The only experience I am getting now is from the IRT. Want to do as much as I can in the security spectrum so that I can decide where I would like to specialize.
Thanks for all of the responses!
May 7, 2010 at 7:24 pm #31467
Chrisj and Ketchup bring up some very good points. I don’t have a lot of experience outside of a Sonicwall/Procurv/Linksys products because the company that I worked for was STUCK in that business model. I didn’t like the Procurv series much either, but I was just excited to get to touch a managed switch as our sales guy usually undersold our customers to unmanaged. I knew that managed switches could do more, but I just don’t have the experience with their other features to say much :'(
The packet trace is a really good idea because I have had a customer that had a Dell GX270 with a bad MB (blown caps) that was crippling the network… (is that light supposed to STAY solid???)
May 7, 2010 at 6:02 pm #30511
Real hackers don’t read books. They just parse what interests them…
May 7, 2010 at 5:57 pm #31462
Unless you are going to carve some VLANs I don’t believe a managed switch would help speed up your network. It (sounds) like you are already running GB NICs and switches if I read your post correctly. The only advantage you are going to have from an unmanaged to a managed switch is the ability to VLAN. If you are looking to do that you may be able to pickup an HP Procurve for a lower cost than some of the other vendors out there.
When I’ve been tossed into Network App hell before it’s usually been fixed by upgrading NICs to GB and implementing an unmanaged GB switch (most of our customers were CHEAP). Beyond that it has usually been on the software’s end. If the program runs on hostnames rather than IP addresses you could try testing a custom HOSTS file mapped to the correct IPs per application server.
May 6, 2010 at 4:18 pm #31725
I’ve had good experiences with Sonicwall.
May 6, 2010 at 4:05 pm #31799
I love Clerks
May 5, 2010 at 7:38 pm #31756
Yeah. That’s what I was the most afraid of. I don’t have anything to hide, but I also don’t want that kind of hassle. I also know the security policiy of the place I work at, and I wouldn’t want to be me microscoped end.
Doesn’t stop me from thinking about how much it would suck if the wrong person were to find this as well, but oh well.
May 5, 2010 at 5:58 pm #31754
I guess not… ;D
Just kinda feel bad if I know that this is open and someone completely FUBAR’s their DB. I do however see how it’s not my responsiblity to notify them if I don’t want to. It’s their responsibility to secure their stuff…
Thanks for the advice Dengar13 and Equix3n-
Just got a little excited because it is the first thing I’ve actually seen and not just read about; or simulated in my lab.
March 14, 2010 at 3:18 am #29623
Could’ve helped you, but then our Contract got cut… :'(