+ Reply to Thread
Page 1 of 2 1 2 Last
Results 1 to 25 of 30
  1. Junior Member Registered Member
    Join Date
    Oct 2015
    Posts
    2
    #1

    Default Has anyone taken GMON exam yet?

    I'm scheduled to take the exam on the 29th. I was curious if anyone had any feedback on the exam yet. Was 3 hours enough time? Any tips on indexing? Any advice is much appreciated!
    Reply With Quote Quote  

  2. SS -->
  3. Senior Member cyberguypr's Avatar
    Join Date
    May 2007
    Location
    Chicago, IL
    Posts
    5,818

    Certifications
    GCFE, GCED, GCIH, CISSP, CCSP, and others that should never be mentioned
    #2
    I thought this cert was starting in December. At least that what GIAC's website says. In regards to the index I stand by my 4 column model as seen here: Passed GCIH. Others here like to have a separate indexof tools. Some like to use color tabs for the books.
    Reply With Quote Quote  

  4. Junior Member Registered Member
    Join Date
    Oct 2015
    Posts
    2
    #3
    I was in one of the first classes, so we are taking it in October. Thank you for passing along your method! I'll check it out.
    Reply With Quote Quote  

  5. Reticulating splines... iBrokeIT's Avatar
    Join Date
    Jul 2013
    Location
    Twin Cities, MN
    Posts
    1,044

    Certifications
    GCIH, GSEC, VCAP5-DCA, VCP5-DCV, MCITP:EA, MCSA 2003/08
    #4
    I would be interested in hearing a review on the course & cert
    Reply With Quote Quote  

  6. Member LWB250's Avatar
    Join Date
    Oct 2015
    Location
    Florida
    Posts
    39

    Certifications
    GCIH, GISP, GMON, A+, Security+, HP ExpertONE Accredited Platform Specialist – HP Desktops, Workstations and Notebooks
    #5
    I was in one of the first classes and am in the beta test group for the test. I'm taking mine on Tuesday (27th) and will report back on the experience. I haven't had a chance to take the practice tests yet but will be doing that this weekend in preparation. I've spent that last week reviewing material and creating an index from the books.
    Reply With Quote Quote  

  7. Senior Member
    Join Date
    Sep 2013
    Posts
    732

    Certifications
    MBA | CISSP | PMP | PMI-ACP | CISM | GMON | GCIH | Sec+ | MCITP: SA | MCSA Win 7 | CCNA
    #6
    Would love to hear feedback on this as well. I took the course in September and I am waiting for others to take the exam to hear some feedback on how it goes and how to prepare. There isn't exactly a lot of study materials out there yet that I know of..
    Reply With Quote Quote  

  8. Senior Member
    Join Date
    May 2014
    Posts
    168

    Certifications
    A+, Linux+, CCENT, Security+,CCNA:R/S,CCNA:S
    #7
    how was the course? do you work in a SOC ?
    Reply With Quote Quote  

  9. Member LWB250's Avatar
    Join Date
    Oct 2015
    Location
    Florida
    Posts
    39

    Certifications
    GCIH, GISP, GMON, A+, Security+, HP ExpertONE Accredited Platform Specialist – HP Desktops, Workstations and Notebooks
    #8
    I took the beta exam and passed it. Because it was the beta no scores are released, so we had no way of knowing where we ended up relative to the cut score, which I believe is a 74.

    I would say that if you took the SANS course and used the information from it to make your index you should be good. This also assumes you have some practical knowledge on the material as well.

    The test goes live December 26th, which is when our certs become official.
    Reply With Quote Quote  

  10. Senior Member
    Join Date
    Sep 2013
    Posts
    732

    Certifications
    MBA | CISSP | PMP | PMI-ACP | CISM | GMON | GCIH | Sec+ | MCITP: SA | MCSA Win 7 | CCNA
    #9
    Hey all, bringing this thread back to an active status since I got notification on the 26th as mentioned by the poster above that the exam was now live and I have until April to take it.

    Anyone who has taken it or is preparing to take it and can provide any tips or advice it would be greatly appreciated.. I took the course in September and honestly I can say while it was informative, the knowledge I gained doesn't relate to anything I do in day to day work.. It was great to have the opportunity to take the course but in reality it will have no ROI on my career, since it isn't what I do daily, and it's such a new exam no one has heard of it.

    Anyways, enough of that rant.. What study materials are people using? Right now all I've heard is to use the books that were provided during the course, which essentially are 5-6 big tombs of slide shows and short text and also to use :

    The practice of Network Security Monitoring
    The Tao of Network Security Monitoring

    Both by Richard Bejtlich. One of these books is over 800 pages long 0_0

    Any advice as I said is greatly appreciated, looking to get this one over with and move on to something that is more applicable to my career and has a better ROI.
    Reply With Quote Quote  

  11. Member LWB250's Avatar
    Join Date
    Oct 2015
    Location
    Florida
    Posts
    39

    Certifications
    GCIH, GISP, GMON, A+, Security+, HP ExpertONE Accredited Platform Specialist – HP Desktops, Workstations and Notebooks
    #10
    I built an index using the books provided in the SANS course along with some related information from my work experience. Based on what I know now from taking the exam, I could have drilled into more detail in some areas, but for the most part the index served me well.
    Reply With Quote Quote  

  12. Senior Member
    Join Date
    Sep 2013
    Posts
    732

    Certifications
    MBA | CISSP | PMP | PMI-ACP | CISM | GMON | GCIH | Sec+ | MCITP: SA | MCSA Win 7 | CCNA
    #11
    That was my thoughts too, build an index using the course material however I was issued 5-6 very sizeable books during the course. Did you carry an entire bag full of books into the exam and pages marked etc? Also would you mind sharing any login on how you actually labeled the books and what not? I wish this exam was like others I've heard of that have 1-2 books, more developed study material etc.

    Right now all I have is this stack of books which are mostly slides and text along with the Tao of Network Security monitoring - 800+ pages...
    Reply With Quote Quote  

  13. Member LWB250's Avatar
    Join Date
    Oct 2015
    Location
    Florida
    Posts
    39

    Certifications
    GCIH, GISP, GMON, A+, Security+, HP ExpertONE Accredited Platform Specialist – HP Desktops, Workstations and Notebooks
    #12
    I literally went through every one of the books and built an index based on the content and material I thought was relevant. The index had the terms and referenced book and page numbers.

    And yes, I drug every one of the books into the test room with me along with my index. Fortunately, no one else was testing at the time so I tossed them on the floor in order so I could grab them easily and kept my index on the table.

    I did not use the Tao of Network Monitoring book, only the SANS books I got in the class. I did print out some of the SANS "cheat sheets" for things like Linux commands and other relevant information.
    Reply With Quote Quote  

  14. Junior Member Registered Member
    Join Date
    Sep 2015
    Location
    Greater New York Area
    Posts
    4
    #13
    Could you email me your index you wrote up? I took the course in July and the on Demand course has expired.

    Thank you

    A
    Reply With Quote Quote  

  15. Member LWB250's Avatar
    Join Date
    Oct 2015
    Location
    Florida
    Posts
    39

    Certifications
    GCIH, GISP, GMON, A+, Security+, HP ExpertONE Accredited Platform Specialist – HP Desktops, Workstations and Notebooks
    #14
    Quote Originally Posted by SplunkingAround View Post
    Could you email me your index you wrote up? I took the course in July and the on Demand course has expired.

    Thank you

    A
    As much as I would like to help you, it would be unethical as well as highly inappropriate for me to share the materials I spent literally days to prepare. It's rather presumptuous to be asking someone for copies of their work for your personal gain, I believe.

    if you took the On Demand course, you should have the books. I have done a number of the On Demand courses, and for each I received a full set of books as well as the USB stick with the labs and additional resources.

    LWB
    Last edited by LWB250; 01-06-2016 at 09:53 PM.
    Reply With Quote Quote  

  16. Stayed at a Holiday Inn.. the_Grinch's Avatar
    Join Date
    May 2007
    Posts
    3,837

    Certifications
    BS-CST CISSP GMON MPSC Security+ XRY 1+2+3 XAMN AAA AA CMFF CCO CCPA
    #15
    Work just signed off on my attending the GMON course in Philadelphia at the end of Feb!
    WIP:
    MS in Legal Studies - Drexel University
    Mobile Forensics
    Kotlin
    Python
    Reply With Quote Quote  

  17. Junior Member Registered Member
    Join Date
    Jan 2016
    Posts
    3
    #16
    Hey Guys,

    My Director just approved my training for SEC511 course in March and this will be my first ever training from SANS (so kinda excited!!). Do you guys have any tips before going to this course? Just wanna fill-up some gaps before going to the actual even itself, at the very least to know some of the tools or methodology used during the course.

    Just some info of myself:

    2 year in Wintel Sysadmin
    3 years of SOC analyst (Arcsight, Nitro and QRadar)
    Currently in SIEM and APT content developer
    Reply With Quote Quote  

  18. Junior Member Registered Member
    Join Date
    Sep 2015
    Location
    Greater New York Area
    Posts
    4
    #17
    Would you help me format the indexc? Ive never taken a SANS cert before, and Im looking for advice on how to study for it...
    Reply With Quote Quote  

  19. Senior Member cyberguypr's Avatar
    Join Date
    May 2007
    Location
    Chicago, IL
    Posts
    5,818

    Certifications
    GCFE, GCED, GCIH, CISSP, CCSP, and others that should never be mentioned
    #18
    I posted how I index here: Passed GCIH

    Another member (sorry, keep forgetting who) posted this: How to Guide for making a SANS / GIAC Index with Pictures | Digital Forensics Tips
    Reply With Quote Quote  

  20. Senior Member
    Join Date
    Sep 2013
    Posts
    732

    Certifications
    MBA | CISSP | PMP | PMI-ACP | CISM | GMON | GCIH | Sec+ | MCITP: SA | MCSA Win 7 | CCNA
    #19
    3/5 books indexed now. Going to finish up the last two and then take a practice, schedule test, refine index, do final practice day before the exam and then go get this thing over with!
    Reply With Quote Quote  

  21. Senior Member cyberguypr's Avatar
    Join Date
    May 2007
    Location
    Chicago, IL
    Posts
    5,818

    Certifications
    GCFE, GCED, GCIH, CISSP, CCSP, and others that should never be mentioned
    #20
    Bring it home!
    Reply With Quote Quote  

  22. California Kid JoJoCal19's Avatar
    Join Date
    Mar 2009
    Location
    Jacksonville, FL
    Posts
    2,339

    Certifications
    CISSP, CISM, CISA, CRISC, GCIA, GSEC, CEHv8, CHFIv8, ITIL-F, MSISA, BSBA
    #21
    Good luck! How long does it take you to index a book? I mentioned in my GCIA thread, next time I'm indexing as soon as I get done with a class.
    Have: CISSP, CISM, CISA, CRISC, GCIA, GSEC, CEHv8, CHFIv8, ITIL-F, BSBA - University of Florida, MSISA - WGU
    Currently Working On: MS Cybersecurity, Learning Python
    Next Up:​ None
    Reading:​ Python Crash Course
    Reply With Quote Quote  

  23. Queen Bee kiki162's Avatar
    Join Date
    Jan 2011
    Location
    Somewhere
    Posts
    612

    Certifications
    VCP6-DCV, MCSEx4, CompTIAx3, GSEC, CISSP..and more
    #22
    @GemoSPX - If you are going to Orlando, I'll be in your class in March for SEC511.
    Reply With Quote Quote  

  24. Senior Member
    Join Date
    Sep 2013
    Posts
    732

    Certifications
    MBA | CISSP | PMP | PMI-ACP | CISM | GMON | GCIH | Sec+ | MCITP: SA | MCSA Win 7 | CCNA
    #23
    Hey all, Took the exam this morning and passed with a 77%. As far as how long it takes to index a book, it really depends, some days I was able to get through a single book in a day, other times I spent a few days going over a book due to work etc. getting in the way. First SANS exam for me, and while I don't do packet analysis or network monitoring in my current position I have to say I feel like I learned quite a bit to expand my knowledge.
    Reply With Quote Quote  

  25. Member LWB250's Avatar
    Join Date
    Oct 2015
    Location
    Florida
    Posts
    39

    Certifications
    GCIH, GISP, GMON, A+, Security+, HP ExpertONE Accredited Platform Specialist – HP Desktops, Workstations and Notebooks
    #24
    Quote Originally Posted by zxbane View Post
    Hey all, Took the exam this morning and passed with a 77%. As far as how long it takes to index a book, it really depends, some days I was able to get through a single book in a day, other times I spent a few days going over a book due to work etc. getting in the way. First SANS exam for me, and while I don't do packet analysis or network monitoring in my current position I have to say I feel like I learned quite a bit to expand my knowledge.
    I don't do packet analysis on a regular basis and only a minimal amount of network monitoring, as our network is ridiculously flat and as much as I would like to put some Snort boxes on it what I would get would be overwhelming and pretty much useless anyway... so don't worry about that.

    My eldest son is starting out on A+ with the expectation of moving into security, and he recently had an acquaintance tell him that the score on the A+ made a difference. I explained to him that unless something had changed significantly, as long as he made the cut score he got the certification.

    While I can see some people wanting to get into the groups who scored above a certain amount, as far as I'm concerned the score is irrelevant as long as I passed. My GMON passing score wasn't that great and it was my first GIAC test as well, but regardless of that I passed and now I'm recognized as having the skills.

    Just as we have yet to tell my youngest who is just about to finish their undergraduate degree, the grades really don't matter as much as getting the credit hours....

    Congratulations!
    Reply With Quote Quote  

  26. Junior Member Registered Member
    Join Date
    May 2015
    Location
    Boston
    Posts
    3

    Certifications
    GCIA, GMON, CCNA R & S, CCNA Security, A+, Security+, ITIL Foundations, ITIL OSA
    #25
    Just took the GMON exam and passed. I found it a decent challenge, but not in the same park as GCIA. As expected it was more geared towards architecture than getting in the weeds technically speaking. Create a solid index and read the books (highlight testable "stuff") and you should be golden.
    Reply With Quote Quote  

+ Reply to Thread
Page 1 of 2 1 2 Last

Social Networking & Bookmarks