lorddicranius

Does this change your mind on the course?

It changed my mind about logging into the online portal to use that training material.

The in-class course was good. The instructor was great, the ISC2 material was good. I didn’t use the study guide that Training Camp put together to supplement the course. They could’ve done a lot better with the hotel.…[Read more]

These are great!

@m0wgli wrote:

LOL, the Call Offensive Security video is also entertaining.

At 1:19, they misspelled “Peyton” in Peyton Manning 😛

Are you curious if it was successfully uploaded and need to find it locally? Or are you wanting to find a sample to analyze? I’m assuming the latter… You could wget it from one of the sources trying to upload it.

Well, PWK has moved its way up my list of things to try and do in 2015. Thanks for that info, KrisTeason.

Thinking about this more, this isn’t really webapp specific and probably belongs in a different forum 🙂

Thanks for sharing your thoughts and experiences, RoleReversal! Very much appreciated. And thanks m0wgli for pinging him on Twitter 🙂

It’s definitely good hearing the experiences of other shops. This isn’t something new for us, but has definitely ramped up in the last year and the amount of time some of our security engineers are putting in to…[Read more]

Thanks m0wgli, much appreciated!

I sat in on 451 Research and Veracode’s webinar today on “Strategies for Third-Party Software Security that Actually Work” and got some tips on this.

– Have a database of canned responses to commonly asked questions. Helps speed up filling out questionnaires.
– Have a secure portal for customers where you store…[Read more]

Not surprised there aren’t any comments here. The less sexy side of security 😛

Anybody who sees this thread able to recommend another way (Twitter, another forum, upcoming related webcast, etc) to ask this question so that it can reach the proper audience?

Their site still has the course labelled as “coming soon.” http://www.offensive-security.com/information-security-training/advanced-web-attack-and-exploitation/

Yeah, I’ve been using http://www.ethicalhacker.net/forum/ lately as well *thumb up*

1. Are you on-board with what we may have to do?

Yep!

2. How extensively do you use PMs through our forums?

Not very often. Maybe once every few months and it’s usually other people initiating the conversation.

3. Who’s interested in Blogging for EH-Net?

I’d be interested in having the capability, but I honestly wouldn’t be blogging all that…[Read more]

@JohnE wrote:

With the exam, what is the timeframe, how long do you have to do it?

7 days to pentest, 7 days to prep your report.
Source: http://www.elearnsecurity.com/certification/ecppt-gold/process.php

Gosh, I hope not. 28 here and I’m working on making the transition. If I only have one more year… :- 😉

@hayabusa wrote:

  grabbed copies as soon as they posted them  😉

x86, 64 and raspberry pi (have been wanting to toy with pi’s for dropboxes, anyway, so…

A Raspberry Pi version? Nice!

Sweet, thanks for the heads up!

Great review! I’ve already had this one on my wishlist, but I’ve just bumped it up to #1 as I’m more motivated to get back into Python.

Been slowly working through these as I had time tonight. Here’s my progress so far without using the hints:

1 – solved!
2 – solved!
3 – solved!
4 – solved!
5 – …what?
6 – …huh?
7 – solved!
8 – Pretty sure I got this one, but I get a 500 error page (instead of a 404?). Source for the page gives the URL for their career page lol
9 – solved!
10…[Read more]

@H1t M0nk3y wrote:

– When I look at the course materials, I could probably study 3 weeks part time and pass the exam. This course, although interesting, will not teach me 100% of new materials…

Aside from the out of pocket costs (btw, wow :-), this would be the other deciding factor for me. That amount of money when I could benefit more from…[Read more]

Sweet, thanks for the heads up!