Comments on: About me

By: blah - SecurityKinetic

blah - SecurityKinetic — Sun, 17 Oct 2010 11:46:17 +0000

[...] Chris John Riley [...]

By: Bob McGrath

Bob McGrath — Fri, 29 Jan 2010 17:12:48 +0000

Hi Chris,

I find your site a nice balance – rare in infosecurity ….

Currently I find myself working away from the family..again..with some time on my hands.
My problem is that I want to do increase my latent technical security skills with a cert but frankly after doing CEH and CHFI last year, other than retaining a few fun facts, I found them not much more than basic memory retention.

I will probably do CISSP sometime but only as a means to bypass HR….I’m sure you know what I mean.

Specifically would you recommend the OSCP as a good starting point for pentesting basics? Basically I seem to be drawn towards that area but wouldn’t dare put myself up as a pentester without much more experience! I have screwed around in hackthissite but want more.

BTW next time you are in Amsterdam give me a shout.

Regards,

Bob

By: Chang Kautz

Chang Kautz — Sun, 20 Dec 2009 08:17:43 +0000

I am happy that I stumbled on your site. Just adding you to my feed reader now.

By: Serbanescu Sorin

Serbanescu Sorin — Thu, 23 Jul 2009 15:24:22 +0000

All my respect for a professional.
–Best regards

By: Chris Riley

Chris Riley — Fri, 09 Jan 2009 11:06:07 +0000

Thanks, to be honest it was something quick I threw together. So glad it came over well. The GPEN, like all of the SANS certs, really should be studied through a SANS course (live training, Self Study, or using the SANS@home series). You have the option to study from your own material and then challenge the exam, however this is tricky to get right, as the topics covered in the GPEN can be very specific. I personally attended a course in Amsterdam and then followed it up with a proctored exam. You get 2 practice tests before the real one, so enough time to prepare. To be honest the exam itself isn’t that hard if you know your stuff and have good organisational skills. As the SANS exams are open book you can have material with you to reference. That said, there isn’t enough time to look up all the answers, so you still have to know whats what. The SANS courses aren’t cheap. My tip, if your company won’t cover the costs, is to try for the work and learn scheme (checkout the SANS website for info). It’s not easy to get in, but if you do it’s a great way to learn. The basics are, you work at a SANS event helping them setup/packup, as well as helping in-class with paperwork, problems etc…. for that you get a 6 day course for $700 which is a huge discount. It’s hard work, but worth every penny in my opinion.

By: Michael Schratt

Michael Schratt — Thu, 08 Jan 2009 21:05:27 +0000

hi,

nice article in 1/09 hakin9
how did you get your GPEN cert? selfstudy? proctored exam?

would be nice hearing from you!
i’m from lower austria too

BR Michi

By: Kaushal

Kaushal — Sat, 15 Dec 2007 05:04:20 +0000

Hi,

Was surfing through some sites and found your reply on one of them. Sounds interesting, but coming to India for ECSA , CEH and MCSE..is strange for me.
Well, I agree with your views for CEH, but security starts from within. I am also looking for security jobs in India. I was working as Information security officer and we had implemented ISO 270001 in our organisation.There is cultivated interest and digged further….still learning new things.. dedicate yourself …you will find a job…think,eat and live “security” and you will find it…

Job is like a child, take care of it and it will take care of you.

Rgds

Kaushal

By: atul jha

atul jha — Fri, 16 Nov 2007 20:26:36 +0000

hey just googlin 4 ceh exam center came across ur page.

neat