SephStorm

Looks like a good opportunity. Thanks.

Day three starts off with dealing with packed malware. We discuss recognizing packed malware, automated and manual methods for unpacking, debugging. We learn that there are issues with ASLR and unpacking malware, that unpacking is often a trial and error process.

We also brefly step back into dynamic analysis, talking about network connection…[Read more]

Hi MianShahzebx.

I heard you guys mention Udemy courses, what all courses are you finding useful? can we get some links?

I agree that it has definately had an impact on the infosec certification community, and I view someone with an OSCP or more to be a prime candidate however, I disagree with their statement that “many people just don’t respect infosec certifications.”

It’s just not true as a rule. There are numerous respected infosec certications, though as n…[Read more]

Well, there’s no indication of a successful attack.

I’d like to grab the file, run it in an isolated environment, and lean as much as I can about it.

I’ll talk to one of our guys, see if that is an option.

Yeah, definitely follow that guide. If you can afford it look into a cbtnuggets or infinite skills membership.

John, would love to hear your FOR408 opinions.

Alucian, how did you like the GSE Written? Can you tell us anything about it?

hi, welcome to EH.net take a look at this thread:

https://www.ethicalhacker.net/forums/viewtopic.php?t=2186.0

Necessary ethical hacker skills, the starter edition:
TCP/IP
OS basics for M$ and the *IX distro of your choice
Internal network basics (switches, hubs, firewalls)
External network basics (routing, IP, interaction with internal networks,…

[Read more]

Is it advanced, or does it correlate with her book? Mixed messages amirite guys? Guys?

Wow, thanks Kris, i’ll check those out. I keep forgetting that infiniteskills.com has a into to programming course that just covers the basics.

Yeah, I’m debating between 610 GREM and 408 GCFE. I’ve never done Forensics, but I really want to do malware analysis.

Thanks I’m glad I could contribute and I look forward to the course, so many to choose from!

Thanks for the reporting. I first used them while in my GPEN course this year, I’m excited to try my hand with venom.

Was that the November award winner? Didn’t see any announcement but I don’t know exactly when you announce them.

Well, I don’t use twitter, I don’t like the character limitation. LinkedIn I wouldn’t have an issue with, I think we do have a group there.

Thanks for the review.

Pretty much what Rattis said, but i’ll add that number 2 is going to depend on whether the device has remote administration enables on external interfaces, which any half competent engineer will have turned off. You want to only be able to manage network devices from a dedicated segregated vlan on the internal network. It is theoretically possible…[Read more]

Thanks for the update.

I’m not sure how different the PWK course is from PWB. Anyone know?

Update:

Took my first practice test today, got an 80% with a 1 page “index” and a having only been through the material once. I expect with a full read through of the material, some lab time (I haven’t had much time yet to get back in) I will score much higher. (I hope)

My personal opinion, I was dismayed at the significant coverage of WebApp I…[Read more]

Huh. Once I finish my GPEN work i’ll probably take an in depth look at the PWB material I have (latest I have) and see what I can learn. Not sure how much has changed, But if I do make an attempt I expect it to be mid to late 2015.

Maybe i’ll understand by then. 🙂