RoleReversal

Hi lorddicranius (and thanks to Mowgli for the prod),

You’re not alone these are/were the bane of my life whilst working in DCs.

I think the QA database and portal are the ideal process, but in practice real world application doesn’t deliver on the promise (in my experience). Especially if you’re handing the process of to a sales or other…[Read more]

t3st,

assuming by wifi analyser you mean the wireless tool by Farpoc?

I use the same tool, as it’s essentially a wireless spectrum analyser similar to aircrack/kismet/etc, My guess is CandC is merely a SSID of a neighbouring AP and (hopefully) not a direct threat to your environment.

@Cyber.spirit wrote:

im not new on linux

Hence my attempted caveat. But you are having problems, and you did ask for help; which I was trying to provide. Won’t bother next time.

Could be many things, have you checked all the usual candidates? download checksums? File/user permissions? etc?

Possible stupid (and/or insulting – not intended) question, you are in same directory as the *.run installer when issuing the ./*.run command?

I’m running on 12.10 and MSF running perfectly my end…..

Sorry, should have been clearer: my experience is with the Team Member level certs.

Team Lead on old the to-do list (which I believe is far harder). Robin Wood has a good right up of his experiences with the TL level exams

I’ve not taken a good look myself, only ran across them myself a couple of days ago, but Risk.io may do what you need.

It is a commercial service, but there is a free/limited option, and all new accounts start with a 30day Pro trial.

Hopefully it might solve your issues, either way I’d be interested in your thoughts and experiences if you do…[Read more]

They both have their uses, and having done both I’d strongly suggest doing both (if UK based).

OSCP will develop a deep technical understanding, CHECK/CREST will help get you the work to put that understanding to the test.

That’s not to say the CHECK/CREST isn’t technically challenging, but having done OSCP first CHECK certification was a…[Read more]

Hi Ender,

welcome to EH-Net.

Depending on your location you could look to local security businesses who may be willing to assist in return for a share in the publicity, or to local groups (DC#, 2600, etc.) for individuals.

Only concern I’d have, is I’ve seen the same marketing spin tried over the years, often resulting in some very bright…[Read more]

Hi Hudson,

welcome to EH-Net 🙂

Not wanting to pull your first post apart, but this seems to be computing for the truely paranoid. Whilst most of it is good advice, in the real world you’ve got zero chance of getting standard users to take this precautions; I’m an overly paranoid infosec guy and the only step I follow is checking the hash sums…[Read more]

If you’ve already got a virtual environment for your server/app lab set-up take a look at Vyatta’s open source edition.

They’ve got some fairly powerful network kit available as virtual images. I’ve got one running as a router handling the core of my lab environment without issue.

If you’ve got some experience with other network kit (Cisco et…[Read more]

@artistic wrote:

@SecurityMonkey wrote:

Sounds like someone is trying to get his homework done by others… lol

something like that 😛 but i have already submitted mine. just wanted to know different thoughts. 🙂

OK, I’ll give benefit of the doubt; you start first, as you already have an answer.

From my limited understanding of the situation I also called BS.

But I also believe (can’t find my sources, sorry) that several big names have already paid up to avoid the legal costs, so TQP must have something with a legal foundation to it.

Time to grab the popcorn and see how this one plays out.

Interesting looking script, thanks for sharing.

I’ll definitely keep it in my bag of tricks for a rainy day and let you know how it goes.

@MaXe wrote:

@Andrew Waite wrote:

Regardless of opinions of particular certs, surely having a questionable (in some people’s eyes, discussion for another thread) cert like C|EH is still better than an empty space in it’s place?

I would say it depends on the company you are applying at, if you only got CEH, and it’s a highly technical and very…

[Read more]

Not wanting to hi-jack the thread but I’m not sure I understand the logic behind removing certifications from CV’s or LinedIn. I’ve achieved more respected and advanced certifications since gaining C|EH, but C|EH still holds a mention on my resume.

Regardless of opinions of particular certs, surely having a questionable (in some people’s eyes,…[Read more]

Haven’t used it in anger yet  (still beta, getting nowhere near production environments 😉 ). But from testing in the lab its a much cleaner interface, no empirical evidence but feels more responsive.

No additional functionality at the moment, but from listening to the weekly Tenable podcasts it seems that replacing existing functionality is…[Read more]

@Yet wrote:

Well i can stop the course if i want & request for refund, there’s no need for people try to tell me i don’t have valid reasons to ask for my money back or request for refund.
Nobody can tell me my reasons is invalid cause i have a lot of reasons to stop the course, also everyone has their reasons to do what they do .

You’re quite…[Read more]

@Yet wrote:

Simply because i don’t want to write the exam & i want to stop i ain’t entitled to get refund my money?

If that’s all there is to it, I’m going to go with yes. It was YOUR decision to sign-up to the course, and YOUR decision not to take the exam. As others have stated, the criteria for moving through the ranks is well publicised and…[Read more]

I can’t comment on OpenVAS too much, got it running in a lab environment but haven’t really used in anger.

Placing technical issues to one side, if you’re providing a chargeable service some (rightly or wrongly, a debate for another day) will be more comfortable with a service backed up by a commercial organisation; and I have come across a…[Read more]