+ Reply to Thread
Page 2 of 2 First 12
Results 26 to 42 of 42
  1. Junior Member
    Join Date
    Apr 2015
    Posts
    8

    Certifications
    Prince2, CSX-F, eJPT, GMON
    #26
    I'm also on the CSXP journey and just started labs, which are good.
    The PDF is theoretical but is following NIST framework so makes sense I guess.
    Reply With Quote Quote  

  2. SS -->
  3. Junior Member
    Join Date
    Nov 2016
    Posts
    9
    #27
    Hi idrus,

    I am currently preparing for the exam from US. The only thing I had heard was that there were few issues from China. I would suggest reachin gout to the support team for any clarifications. CSXP has a very good responsive team.
    Reply With Quote Quote  

  4. Junior Member
    Join Date
    Nov 2016
    Posts
    9
    #28
    Yes itz truly interesting, but slightly costlier. However, the amount of learning you can obtain depends upon how you take the learnings further. It is yet to get the market reach which generally exist for some gold standards like CISSP/CISA, but its truly a hands-on exam and seems good to me so far.

    I would not say its as much as OSCP, but definitely on its way !!
    Reply With Quote Quote  

  5. Junior Member
    Join Date
    Nov 2016
    Posts
    9
    #29
    Hi princesamus,

    That's awesome. I have taken a break of a couple of weeks, but will soon start. I am done with Identification & Protection though I need re-practise the labs before I register for detection. We can be in touch !!
    Reply With Quote Quote  

  6. Junior Member Registered Member
    Join Date
    May 2015
    Posts
    1
    #30
    Does the CSX-Practitioner require you to have the CSX-Foundation cert? Does the CSX-Specialist require you to have the Practitioner cert?
    I'm trying to coordinate my cert ascent to CSX-Expert (when it becomes available) and don't wish to waste time/money on the beginner exams if not required. There is much crossover, but my goal is to obtain the most advanced cert from each of the major organizations (GIAC, ISACA, Offensive Security, ISC2, and EC-Council). Between them, whomever is hiring will surely find a cert they can respect (One presumes I will also have the skillz to back up the cert)
    Reply With Quote Quote  

  7. Junior Member
    Join Date
    Dec 2016
    Posts
    6
    #31
    1- How many questions/scenarios do we get in the exam?
    2- The questions related to Nmap/pfSense/Snorby/Splunk, do we need to know more than what the labs are teaching us? For example, do we need to know each CLI parameter, menu options and settings of these tools inside out or limited to what is shown in the labs?

    Thank you.
    Reply With Quote Quote  

  8. Senior Member
    Join Date
    Nov 2011
    Posts
    810
    #32
    Quote Originally Posted by rgrinnell2015 View Post
    Does the CSX-Practitioner require you to have the CSX-Foundation cert? Does the CSX-Specialist require you to have the Practitioner cert?
    I'm trying to coordinate my cert ascent to CSX-Expert (when it becomes available) and don't wish to waste time/money on the beginner exams if not required. There is much crossover, but my goal is to obtain the most advanced cert from each of the major organizations (GIAC, ISACA, Offensive Security, ISC2, and EC-Council). Between them, whomever is hiring will surely find a cert they can respect (One presumes I will also have the skillz to back up the cert)
    You must pass CSX-P before proceeding to the next CSX cert.
    Reply With Quote Quote  

  9. Senior Member yoba222's Avatar
    Join Date
    Jun 2013
    Posts
    355

    Certifications
    GCIH, eJPT, CCNA R&S, CAPM, Sec+, Net+, A+
    #33
    Just stumbled upon the existence of this cert. Very interesting. So it looks like:
    1. You don't need to take the fundamentals (CSXF) to take the practitioner (CSXP) exam.
    2. ISACA requires you get CPEs (I bet there's a fee ) AND retake the exam after around 3 years to recertify.
    3. You can take the next harder exam, the specialist (CSXS) to recertify.
    4. The CSXS exam barely even exists yet, if even at all.
    https://www.linkedin.com/pulse/isaca...-t-frank-downs
    5. The expert exam (CSXE) seems to not exist yet. I'm having a hard time finding either the CSXS or the CSXE on their website.

    One of the things I like about eLearnSecurity is that it provides a fantastic learning journey, however, the industry recognition is basically nonexistent.

    This looks like it provides a similar learning journey. As far as industry recognition, it's not there yet, but it's ISACA. Don't need to say anything more there.


    EDIT: Aha. ISACA has the CSXS and CSXE URLs unlisted but up:
    https://cybersecurity.isaca.org/csx-...-certification
    https://cybersecurity.isaca.org/csx-...-certification
    Last edited by yoba222; 05-29-2017 at 02:57 PM.
    Working on: Linux Foundation Certified System Administrator (LFCS) exam scheduled October 20
    Reply With Quote Quote  

  10. Senior Member
    Join Date
    Nov 2011
    Posts
    810
    #34
    Quote Originally Posted by yoba222 View Post
    Just stumbled upon the existence of this cert. Very interesting. So it looks like:
    1. You don't need to take the fundamentals (CSXF) to take the practitioner (CSXP) exam.
    2. ISACA requires you get CPEs (I bet there's a fee ) AND retake the exam after around 3 years to recertify.
    3. You can take the next harder exam, the specialist (CSXS) to recertify.
    4. The CSXS exam barely even exists yet, if even at all.
    https://www.linkedin.com/pulse/isaca...-t-frank-downs
    5. The expert exam (CSXE) seems to not exist yet. I'm having a hard time finding either the CSXS or the CSXE on their website.

    One of the things I like about eLearnSecurity is that it provides a fantastic learning journey, however, the industry recognition is basically nonexistent.

    This looks like it provides a similar learning journey. As far as industry recognition, it's not there yet, but it's ISACA. Don't need to say anything more there.


    EDIT: Aha. ISACA has the CSXS and CSXE URLs unlisted but up:
    https://cybersecurity.isaca.org/csx-...-certification
    https://cybersecurity.isaca.org/csx-...-certification
    The recognition won't be there until they start giving it away for free. I think comptia does a pretty good job of pushing it's certs in early status to a select 50 to 100 guest test takers. Once those guest update their LI, it will start the recognition process.
    Reply With Quote Quote  

  11. Junior Member
    Join Date
    Dec 2016
    Posts
    6
    #35
    In the labs, there are also attack scenarios generated by the students (for example with metasploit, creating malicious file with msfvenom), do we need this knowledge for the exam as well or during the exam, the attacks will be performed by the system and our goal is only to identify, protect, detect, respond and recover? in other words, during the exam, do we need to switch between virtual machines to generate malicious traffic?

    Thank you.
    Reply With Quote Quote  

  12. Junior Member
    Join Date
    Dec 2016
    Posts
    6
    #36
    I would appreciate if someone may provide answers to my questions below.

    1- How many questions/scenarios do we get in the exam?
    2- The questions related to Nmap/pfSense/Snorby/Splunk, do we need to know more than what the labs are teaching us? For example, do we need to know each CLI parameter, menu options and settings of these tools inside out or limited to what is shown in the labs?
    3- In the labs, there are also attack scenarios generated by the students (for example with metasploit, creating malicious file with msfvenom), do we need this knowledge for the exam as well or during the exam, the attacks will be performed by the system and our goal is only to identify, protect, detect, respond and recover? in other words, during the exam, do we need to switch between virtual machines to generate malicious traffic?

    Thank you.
    Reply With Quote Quote  

  13. Junior Member
    Join Date
    Dec 2016
    Posts
    6
    #37
    In the exam, do we need to sniff the traffic with tcpdump or wireshark or we will be given the packets captured during the compromise to analyse?
    Reply With Quote Quote  

  14. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    170

    Certifications
    CISSP, CEH, CCNA Security, CCNA R&S, VCP5-DCV, VCP-Cloud, MCSA 2012, MCSA 2008, MCSA 2003, Security +, Net+, A+
    #38
    Sitting in the CSX Fundamentals 2 day class right now. The Practitioner cert looks to be pretty good for IR.
    Reply With Quote Quote  

  15. Junior Member Registered Member
    Join Date
    May 2016
    Posts
    1
    #39
    Hey guys, just thought I'd drop a note and bring some life back into this thread. CSX is growing and we are going to start running some additional pilots for our new content. If you are interested DM me with your information and get a chance to take part in defining new ISACA cybersecurity content. 😁
    Reply With Quote Quote  

  16. Senior Member 636-555-3226's Avatar
    Join Date
    Jul 2015
    Posts
    863

    Certifications
    Lots of security certifications, yet the more I learn, the further I have to go...
    #40
    I'm interested, but how about you DM me? I tried to send you a DM but got rejected (see below). I always like giving back to the infosec community!



    The following errors occurred with your submission
    • Endorian has chosen not to receive private messages or may not be allowed to receive private messages. Therefore you may not send your message to him/her.

      If you are trying to send this message to multiple recipients, remove Endorian from the recipient list and send the message again.
    Reply With Quote Quote  

  17. Junior Member Registered Member
    Join Date
    Feb 2016
    Posts
    1
    #41

    Question Isaca CSX lab 2

    I bought 3 CSX labs. I have problem with the lab 2.14. How to decrypt the file in Kali Linux. Lab says ' using numerical value in the traffic , open attacker note in kali Linux.
    Reply With Quote Quote  

  18. Junior Member Registered Member
    Join Date
    Sep 2017
    Location
    US
    Posts
    1
    #42
    Quote Originally Posted by Jramani View Post
    I bought 3 CSX labs. I have problem with the lab 2.14. How to decrypt the file in Kali Linux. Lab says ' using numerical value in the traffic , open attacker note in kali Linux.
    Hello Jramani,

    I have also purchased the 3 CSX labs and exam. When you launch a lab, there are 3 tabs off to the right of the pop-out window; Content, Machines, and Support.

    Under the Support tab, there is a heading for Resources and below it is a Lab Manual link. If you open the Lab Manual for 2.14, it will give you some direction on how to find what you are seeking.

    Lastly, do not use the captures that are already present in your home directory.
    Reply With Quote Quote  

+ Reply to Thread
Page 2 of 2 First 12

Social Networking & Bookmarks