Well Guys:

I spent a week in a CEH Training Class (not a bootcamp).

Then spent the weekend reviewing the tools, their respective creators, and trying to use as many as possible (there are over a hundred) and then sweated as I waited until Tuesday to take my exam.

I passed at 92% on my first attempt.

1 Cert Completed.

A few more to go...

Looking for the following:

Security+
TICSA
Microsoft MCSA/MCSE + Security (already MCSA/MCSE) so I need either 2 or 3 exams.

CCSA/CCSA - Just because I like Checkpoint too!

But the GSEC is officially the 4th Cert.

BTW - I got to get my Sniffer Certs completed in about the same time.

As far as the trove of tools - I came about it from a sortie with a Trojan/Worm tools that I noticed seemed to visit a variety of sites but none were the same on any two of the machines hit. (Over 30 overall).

So I tried my luck and hit paydirt.

Now I have an arsenal of viruses and worms that are immune to virii checkers.

So these troves do exist. But it does appear they are mobile?

Good luck finding one.

Look at your worms. Particularly ones with the sdbot or some other bot.

Seems they go and download 2 files from the trove.

__________________
Comblues

CCNP+MCNS CCDP CCDA CCNA CSE
MCSE+I, MCSE, MCP+I, MCPS MCT
MCSA/MCSE 2000 + messaging
MCSA 2003
CCEA CCA LBS ICAS RMS IMS CCSP
Certified Ethical Hacker
Cisco Voice Certs: UCSE
A+ Network+ I-Net+
Certified Internet Security Specialist
Cisco WLAN SE/FE
CCIE-Written:RS
Cisco Global Product Support AVVID Field Engineer (VoIP, R&S, CAT 4224, and ICS 7750)

Report this post to a moderator

Delphis is right. Most hacker tools are for script kiddies (the talentless and lazy).

Any respectable "Ethical Hacker" or "Security Geek" will write their own code to bypass anti virus programs. For example, look at NT systems. They are the easiest systems to break into. They are IMPOSSIBLE to secure if you have NetBIOS enabled unless you have an outside firewall blocking the port traffic. Just research port 445 and hidden admin shares (C$). A simple 10 line program using PSEXEC.EXE can scan and list all holes in a subnet and copy and execute any code you want. If you really want the job done, write an additional 10 lines of code that will cycle through the 255 chr() values in increments until it gets done. Theoretically, this is perfect for a middle man attack for IP spoofing since you don't need to see the output from the program, you just want the project to succeed. So basically, unless you have a polymorph engine to encapsulate a script kiddie program, this level of attack is the only way to truly test the castle walls. Anything less is a half witted way to stumble through your job

The CEH is nothing more then a script kiddie certification. I plan on getting it because is is something to break the ice at dinner parties. A true InfoSec person should be comfortable with coding and networking alike, and should be able to access low level secured systems without the use for well know parlor tricks. The industry needs more skilled Security professionals, not snake oils salesmen. The CEH certification should be a base - low level - novice certification with 1-3 levels of certification past it dedicated to system security at levels beyond simply knowing what the 14 year olds are using these days.

I don't mean to come accross as an arse, but this type of certs can become very dangerous very quickly when people want to show others how much they don't really know, all in the name of InfoSec when it should actually be called CSK for Certified Script Kiddie. To know how a hacker thinks, don't use the tools. Understand how and why the "vulnerabilities" are security risks, not memorizing the output and interface of an enumeration program. Simple utilities like Telnet and learning how to program socket connections are more important then “how to” with netbus.

Last edited by Ciaban on 09-08-03 at 01:18 AM

Report this post to a moderator

what "real" hacker didnt out being a script kiddie. everyone has to learn, you people with your arrogant attitudes can eat a dick.
if you can honestly say you became a real hacker without fooling around with some kiddie tools or checking out C code to see how they did that, then you are really friggin talented and should probably have something better to do that post on this forum

Report this post to a moderator

LOL gat0r
You didn't read the full post. "The CEH certification should be a base - low level - novice certification with 1-3 levels of certification past it dedicated to system security at levels beyond simply knowing what the 14 year olds are using these days."

It's like a nurse taking a 50 question test, passing and thinking they can do brain surgery.

And sorry gat0r, I'm not gay. Thanks for the offer though.

Report this post to a moderator

yeah you are real XXXXing cool...

Report this post to a moderator

Relax brother, no need to heat it up. We are here for the same objective.

While, in fact, i have'nt really go for the CEH exam, most probarly by end of the year. Currently, taking my Oracle.

I believe the others are more willigly to share the informations and resources on this area.

Cheers dude !!!

Report this post to a moderator

Hello my name is Greg, I just found this site. Been looking into Security for a while. Currently i am workin on my computer science major at college but i need some advice as to how i should go about breaking into the security field. Again i am only a student so i am really restricted as to what i can and cannot do. But i am totally willing to learn on my own or at least add on to the( most likely meaninless) things i do know. I have experiance with some hacking and anti-hacking tools as well as some access to them. i would just like to know maby where i should be going with this, because its so new. Maby books or software i could buy. please help me out email me or post back.
Thank you.

Report this post to a moderator

It's easy man. Just get the * Hacking Exposed * book. Download the tools, install it on 2 systems and test it out. Read more books on hacking issue and security forum. Certainly from there, it will enhance your knowledge and your pespective towards hacking.

Frankly speaking the content, what being learn from CEH is almost the same with the * Hacking Exposed * Book.

Good luck to you man

Report this post to a moderator

Ciaban
You make very interesting points. I myself have grown weary of the "inventory of tools" approach many hacking courses like Foundstone take to teach hacking. I must confess I shy away from the "script kiddie" term simply because so many networks are still vulnerable to these types of attacks AND I figure if a system is vulnerable to such attack a "real" hacker would still use these tactics over reinventing the wheel, so to speak.

I've been reading an interesting book recently that I feel addresses the deeper issues you allude to. "Hacking, The Art of Exploitation" by Jon Erickson, No Starch Press. Very interesting discussion of the coding of buffer overflow exploits including assembly coding.

Report this post to a moderator

comblues
yer trippin
go to Defcon
participate in their hacker wargames
get yer XXX handed to you
only way to learn

...humility

look it up

Report this post to a moderator