rattis

don’t know if this will help in your goal or not, but did you check http://www.sigidwiki.com/?

I’m sad to say that Rance passed this morning. R.I.P. He will be missed.

Unicityd,

The PI is needed in Michigan to do Computer Forensics work. The ASIS was recommended by my Intel professor during undergrad because I know the physical side to a point and done some physec in the past. Locksmith because I want more experience than I get as a member of TOOOL.

But I also believe any good security person is going to cover…[Read more]

and if you can’t find anyone else to review your resume, let me know and I’ll look it over.

Saw this on twitter too. Scanned through it, rather cool. It’s become one of my go to suggestions for people when they ask.

Well like I said in my 2015 thread post, I didn’t do that good this year.

2016 – Personal (just hard with all my money going to out of pocket for school):
Locksmith cert. (on my list every year).
PFSense firewall courses (think they come with cert of completion).

Work:
GCIH (already paid for the exam, not doing the class, just need to study up…[Read more]

The best you can do is work with the Paypal fraud department, and show that you were a victim. Hopefully you have emails and IRQ chat logs that show his requests, that you can forward to him.

Any true ethical hacker isn’t going to help you with a job against someone. They’ll tell you to contact your local Law Enforcement Agency.

how much power shell does one need to know before taking this course? The SANS powershell hacking class says the first day is spent teaching Powershell.

I’m interested in something like this, but know zero powershell.

There are a few online places. First I would start wtih https://ctftime.org/, look at the upcoming CTFs.

Next I would check your area for the local CitySec or Defcon groups, maybe 2600. You might need to travel a little way, 2600 and the best CitySec in my opinion are just over an hour away from where I work and live.

Look around the local…[Read more]

Don’t take this the wrong way, but if your resume reads like your post, then I would start by re-writing your resume and getting someone to review it with you. There were a lot of typos in the posting. I had the same problem for over a year due to an auto-correct I missed. Changed Virtualization to Visualization. Once that was pointed out to me,…[Read more]

So I didn’t hit any of the below. I ended up starting the Grad school in Spring, and got a new job in July. The people I’m working for just paid for my GCIH exam Friday, so I’m studying for that on my own. They’re paying the test fee, not the class. They feel based on my current knowledge level and working as a CIRT analyst I should be able to…[Read more]

That was an ok, get your feet wet book. We used it in my 400 level Ethical Hacking class when I was in college.

Most likely that pop up was when you logged in to your Nessus box via the browser and the browser wanted to save the password for you.

The last bit doesn’t make much sense without more information.

Running Linux used to be a decent book to get a good foundation covered a lot of areas. So was the Unix and Linux Administration Handbook. The LPI certification in a Nutshell wasn’t too bad.

Nixcraft is a decent website to read too.

@DraakusM wrote:

Looks like there hasn’t been much activity in this forum for a bit… anyone have any recommendations on kit for CCNA security on a budget?

Look at what the different sales site says they think you need. Like the before mentioned Certification Kit site. Then, after you get a list of devices they recommend search ebay. That’s how I…[Read more]

@DelimitingCharacter wrote:

Wasn’t Kali Linux already hardened?

I am not that familiar with it, but its basically the same as Debian correct?

No, Backtrack and Kali are not hardened by default. Neither is Debian.

As Purehate (was on the Backtrack team a the time) said, it’s a security distro not a secure distro. It has well known default…[Read more]

Not enough information to go on.

1. what kind of router, soho, small / medium office, large enterprise. Who made it? Was it configured to be manageable without using the console? Etc.

2. This question makes no sense.

3. See question 1, but ignore the management question.

unicityd, thanks.

A little more info, since I was looking at the CISSP this morning. You can get 1 year wavier for education, meaning you need 4 years not 5.

Candidates must have a minimum of five (5) years cumulative paid full-time work experience in two or more of the ten domains of the (ISC)² CISSP CBK®. Candidates may receive a one year experience waiver w…

[Read more]

Well, I said last year that my goal was my degree. I’m graduating in 4 weeks with a Bachelor of Information Assurance. So I guess I met my goal. If I get converted from contractor to employee (which my management is trying to do), I’ve been told I need to take some SANS Courses.

Cert plans for next year (out of pocket):
CISSP
Locksmith…[Read more]

You might want to look at the CISSP too. It’s hit or miss when you mention it in our community, but it looks pretty to HR, and helps get you past them. You might be a paper tiger at that point, but it gives you a broad exposure to security, and shows “you’re serious” about the transition.

(Yes that was based on comments I’ve been told by HR, at…[Read more]