+ Reply to Thread
Results 1 to 9 of 9

Thread: Help!!!!

  1. Junior Member
    Join Date
    Mar 2017
    Posts
    18

    Certifications
    A+, Network+, Security +, ITIL Foundations
    #1

    Default Help!!!!

    I am scheduled to take the test in two weeks and still having issues identifying various attacks from a string of code. It seems like I have searched far and wide for materials to help but am still falling short.

    Any advice?
    Reply With Quote Quote  

  2. SS -->
  3. Junior Member
    Join Date
    May 2016
    Posts
    18

    Certifications
    Security+, CSA+, CASP
    #2
    Go to the OWASP Mutilldae website and download.
    Open and do some labs. A great place for labs with walkthroughs is at irongeek. Just google irongeek and mutilldae tutorials.

    Most are pretty quick and you will actually see how SQL / http / buffer overflows and injections work because your doing it. Choosing a few was part of a college class assignment and it helped immensely. I was easily able to recognize and answer these questions on the CASP.

    Good luck.
    Reply With Quote Quote  

  4. Junior Member Registered Member
    Join Date
    Oct 2017
    Posts
    3

    Certifications
    CCNA R&S
    #3
    How did it go? I am getting ready to take the exam after two weeks.
    Reply With Quote Quote  

  5. Junior Member
    Join Date
    Mar 2017
    Posts
    18

    Certifications
    A+, Network+, Security +, ITIL Foundations
    #4
    I ended up rescheduling to the 22nd of October and purchasing cybrary transcenders.
    I am doubling back on the labs in the Sybex book, attacks and mitigation strategies, stream vs block, risk management formulas, protocol analyzers vs vulnerability scanners, Linux commands, and symmetric vs asymmetric.
    Hoping to get it this time so I can take the project + between November-December and then finish up my Bachelors in January. Fingers crossed.
    Reply With Quote Quote  

  6. Junior Member
    Join Date
    May 2016
    Posts
    18

    Certifications
    Security+, CSA+, CASP
    #5
    You most definitely need to know the formulas. I only had one Linux question and it was super easy. You didn't even need to know Linux to understand what it was asking. Make sure you have a good understanding about what the appliances / devices do to block attacks and where they should be placed within a network. I can almost guarantee you will see a time consuming PBQ (I had two) on your test about that.
    Reply With Quote Quote  

  7. Junior Member Registered Member
    Join Date
    Oct 2017
    Posts
    3

    Certifications
    CCNA R&S
    #6
    Quote Originally Posted by LSagee View Post
    You most definitely need to know the formulas. I only had one Linux question and it was super easy. You didn't even need to know Linux to understand what it was asking. Make sure you have a good understanding about what the appliances / devices do to block attacks and where they should be placed within a network. I can almost guarantee you will see a time consuming PBQ (I had two) on your test about that.
    Thanks for the heads-up. Are there two questions about devices blocking attacks on the network or just one?
    Reply With Quote Quote  

  8. Junior Member Registered Member
    Join Date
    Oct 2017
    Posts
    3

    Certifications
    CCNA R&S
    #7
    Good Luck. Let me know how it goes. I will take it at the end of this month.
    Reply With Quote Quote  

  9. Senior Member shochan's Avatar
    Join Date
    Sep 2016
    Location
    AR
    Posts
    404

    Certifications
    A+, Network+, i-Net+, Server+, Security+, MCP 70-210, Novell CNA 5.0
    #8
    Quote Originally Posted by apisky4 View Post
    I ended up rescheduling to the 22nd of October and purchasing cybrary transcenders.
    I am doubling back on the labs in the Sybex book, attacks and mitigation strategies, stream vs block, risk management formulas, protocol analyzers vs vulnerability scanners, Linux commands, and symmetric vs asymmetric.
    Hoping to get it this time so I can take the project + between November-December and then finish up my Bachelors in January. Fingers crossed.
    I always need an analogy when studying for these certs...

    How I differentiated between (S)ymmetric = (S)ame key & Asymmetric (opposite of same, meaning 2 keys - encrypt/decrypt)...hope that helps.

    On the algorithms, distinguishing between those...

    With Symmetric - I found the ones that end in "S" are no brainer - like AES, 3DES, DES...and since "R" is next to "S" in alphabet then you know RC4/5 are symmetric too, I haven't figured out an analogy for the Fish alg (Blowfish/TwoFish)...

    With Asymmetric - I found the ones ending in "A" - Like RSA, DSA are easy to remember...but ECC is one that is difficult to distinguish - except R(A)M in servers.

    If anyone else has any pointers, feel free to jump in!
    2017 -> Cloud+ beta (Oct), Linux+ 103 (Dec)
    2018 ->Linux+ 104, CCNA CyberOps (July Cohort)
    Reply With Quote Quote  

  10. Junior Member
    Join Date
    May 2016
    Posts
    18

    Certifications
    Security+, CSA+, CASP
    #9
    Quote Originally Posted by rneupane1 View Post
    Thanks for the heads-up. Are there two questions about devices blocking attacks on the network or just one?
    I had two PBQ on my exam. I don't really want to say too much about the problems themselves but I will tell you how I attacked them (hopefully that is okay). First I looked at the list of attacks and the list of appliances such as firewalls, switches, routers, anti-virus, etc and did a process of elimination. Using the scratch paper they give you, I wrote down all the items you have available and simply crossed them out if they didn't fit in the scenario. Example, if the scenario says nothing about needing a router or switch, I crossed it out. Once you whittle down the list, it becomes quite clear what you need, then it is just a matter of knowing where to put it. Doing it this way will save you a lot of time on the test and makes what seems like an overwhelming PITA task much easier. If I remember, I was able to eliminate about 60% of the possible choices quickly on both of the PBQs. Trust me spend the time to write down your options on paper and cross them out. Otherwise you will be constantly looking at a huge list, going over every appliance you need and what problem they solve trying to pick the right one.

    There were a few regular questions where you need to know what appliance is used to block specific attacks, but you have to navigate lengthy questions to understand what they are getting at. A lot of the questions included unnecessary information but I think that was by design. The majority of the questions were not straightforward.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks