+ Reply to Thread
Results 1 to 9 of 9
  1. Junior Member Registered Member
    Join Date
    Feb 2017
    Location
    Sacramento
    Posts
    6

    Certifications
    A+
    #1

    Default Looking for a more hands on technical Network Security cert

    Little background, I've been doing IT support for awhile now and have more than capped my abilities here. I've only been interested in InfoSec and am basically just waiting for a FTE position to open. I have my Sec+ and am taking my CEH (I know gpen and oscp are more highly regarded, but wanted the basics first). I enjoy more technical and practical courses rather than learning just the theory.

    My question is, I want to study a more defensive based cert that is technical and hands on. I was looking at that ECSA, but I know EC council doesn't have the best reputation. Any suggestions?


    Thank you!
    Reply With Quote Quote  

  2. SS
  3. They are watching you NetworkNewb's Avatar
    Join Date
    Feb 2015
    Location
    Off the grid
    Posts
    2,936

    Certifications
    A+/Net+/Sec+, CCENT, CCNA:Sec, CCSK, GCIH
    #2
    Wireshark Certified Network Analyst (WCNA)... GIAC Certified Intrusion Analyst (GCIA)... There is a Qualys certification out there... Could go down the Cisco security path...

    There are other SANS course as well depending on what topic you are specifically looking into.
    Reply With Quote Quote  

  4. Junior Member Registered Member
    Join Date
    Feb 2017
    Location
    Sacramento
    Posts
    6

    Certifications
    A+
    #3
    Awesome, I'll check those out. I thought about CCNA Security, was just kind of thinking of studying a more vendor neutral topic. Just really wanted a more practical and technical cert. I can study theory all day, but without being able to apply it, I don't think it does that good for me. Still have a long ways to go, and don't want to over certify myself until I get more experience, but I want to keep learning.
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    Feb 2015
    Location
    The Interwebs
    Posts
    206

    Certifications
    PMP, CISSP, CISA
    #4
    How about eLearnSecurity (eLS) Practical Network Defense (PND) (https://www.elearnsecurity.com/cours...work_defense)?

    eLS is popular with the eJPT and eCPPT courses but the others don't get as much attention. Looks like it covers the theory but also has 10 labs so you get some hands on technical experience also. It isn't as recognized as other certs but if you're in it for the knowledge then might be a good option.

    A specific SANS course you might be interested in is the GCIH or GCED.
    Reply With Quote Quote  

  6. Senior Member 636-555-3226's Avatar
    Join Date
    Jul 2015
    Posts
    936

    Certifications
    Lots of security certifications, yet the more I learn, the further I have to go...
    #5
    Certs are good for the basics, but even most SANS courses don't go deep. If you want to go deep, you're going to need to download and learn to use the tools themselves. If you want defensive hands-on skills (without a cert), download and install Security Onion at home. Run some VMs (with torrented pirated Windows that are likely pre-infected with something), and infect the heck out of them to create lots of malicious traffic going in & out of your house.

    If I'm hiring for a defensive security position and you've had security onion running in your house for the past year and have been doing your own incident response with that kind of stuff, major double extra super bonus points. Much better even than any SANS or Offensive Security certs since it shows you've got major hands-on technical chops and can start contributing to my department from the first hour you walk in the door.

    Then get that new job and make them pay $6k for your SANS classes.
    Reply With Quote Quote  

  7. Member
    Join Date
    Dec 2017
    Posts
    96
    #6
    Quote Originally Posted by 636-555-3226 View Post
    Certs are good for the basics, but even most SANS courses don't go deep. If you want to go deep, you're going to need to download and learn to use the tools themselves. If you want defensive hands-on skills (without a cert), download and install Security Onion at home. Run some VMs (with torrented pirated Windows that are likely pre-infected with something), and infect the heck out of them to create lots of malicious traffic going in & out of your house.

    If I'm hiring for a defensive security position and you've had security onion running in your house for the past year and have been doing your own incident response with that kind of stuff, major double extra super bonus points. Much better even than any SANS or Offensive Security certs since it shows you've got major hands-on technical chops and can start contributing to my department from the first hour you walk in the door.

    Then get that new job and make them pay $6k for your SANS classes.
    So, tell him to do something illegal? Interesting thought process.
    Reply With Quote Quote  

  8. Senior Member Moldygr33nb3an's Avatar
    Join Date
    Jul 2016
    Location
    The Oasis
    Posts
    239

    Certifications
    A+, Network+, Security+, Project+, CSA+, CASP, CEHv9, CCNA R&S/Security, eJPT
    #7
    You can get Windows VMs from Microsoft for free. They only last like 90 days, but just make sure you take a snapshot so you can revert back after the 90 days or if you brick the VM.
    Current: OSCP

    Next: CCNP (R&S and Sec)

    Follow my OSCP Thread!
    Reply With Quote Quote  

  9. Senior Member 636-555-3226's Avatar
    Join Date
    Jul 2015
    Posts
    936

    Certifications
    Lots of security certifications, yet the more I learn, the further I have to go...
    #8
    The idea behind downloading a torrented, pirated Windows is to get something that you know is likely infected and then begin going through standard infosec motions. I absolutely do not condone or encourage using pirated or bootleg software for normal, day-to-day use, but in terms of learning computer forensics and incident response, it's quite useful. I know quite a few people who brush up on IR, forensics, and malware reverse-engineering by downloading pirated OSs, software and keygen/patching programs from very shady sites and then seeing exactly how the bad guys booby-trapped them.

    Yes, you can get free, clean versions of Windows from Microsoft (and we use them here for some of our labs), but they're not going to help you with IR, forensics, or malware reverse-engineering by default out of the box.
    Reply With Quote Quote  

  10. Senior Member
    Join Date
    Dec 2015
    Location
    Quebec, Canada
    Posts
    514

    Certifications
    A+, Network+, Linux+, HP APS, VCP 3-4-5-6, VSP,VTSP, SSCP, Veeam VMCE, CISSP
    #9
    One part of my business is a computer repair shop that mostly disinfect PC from all kind of malware. It was the perfect source of malware ****
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks