+ Reply to Thread
Results 1 to 5 of 5
  1. Member
    Join Date
    Jun 2015
    Posts
    31

    Certifications
    Security+ eJPT
    #1

    Default Sitting for the CSA+ this Thursday

    Hey guys,

    I'm sitting for the CSA+ this Thursday and was wondering if there is anything I can do to review more? Right now I've read the sybex book multiple times, reviewed my notes, done the practice labs and currently I'm just reading the skillpipe book.

    I feel really uneasy about this test for some reason... any suggestions for things to review?
    Reply With Quote Quote  

  2. SS -->
  3. Senior Member mikey88's Avatar
    Join Date
    Jul 2017
    Location
    Seattle, WA
    Posts
    151

    Certifications
    Security+, Network+, Server+
    #2
    From what I've heard, make sure you can read and interpret logs well. Maybe look into doing some kind of sim labs.
    2017 Goals: Security+ [] Server+ []
    2018 Goals: CCNA R/S, Security [ ]
    Reply With Quote Quote  

  4. Junior Member Registered Member
    Join Date
    Sep 2017
    Posts
    1

    Certifications
    A+, Network+, Security+, CSA+
    #3
    I took the exam back in August (passed). One thing that I can say are important are understanding vulnerabilities for different OS's. I've studied for the CISSP and CASP, and found that because there's a lot more information available about them, they were helpful in that I had the knowledge. Everyone will keep saying "be able to read the logs", and while this is true, you will probably encounter various different log formats, sometimes all at once, so it makes it hard that you can't specifically say Wireshark, or Snort, or Fortigate, etc.

    Remember stuff like the difference between Technical and Administrative Controls, CIA and AAA, and just take your time. You have a very large amount of time per question on this one, so don't be afraid to stop and think about a question.
    Reply With Quote Quote  

  5. Member
    Join Date
    Jun 2015
    Posts
    31

    Certifications
    Security+ eJPT
    #4
    An Update,

    I failed with a 658, I didn't know Log analysis as well as I thought I did.

    A little Review of what my test had...

    3 simulations that were extremely heavy on the log analysis
    Some NMAP questions
    SCAP stuff that I forgot what It mean.
    A bunch of more log analysis questions (maybe 6)

    The rest of the info I knew from the sybex book and the Skillpipe book. I have a free retake, but I'm not sure if I'm gonna do it because I dont have good knowledge of reading logs.
    Reply With Quote Quote  

  6. Member mrvl13's Avatar
    Join Date
    Jun 2010
    Posts
    44

    Certifications
    Network+,Security+,SSCP, MCP,ArcSight ATP
    #5
    Don't feel bad i did not pass on my first attempt either, I feel that some of the log captures were not as straight forward as they should have been, the logs data can also vary between SIEMS and/or packet captures...etc. I do feel that Comptia needs to go back to the drawing board on this one.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks