On Mon, Apr 20, 2009 at 6:24 PM, chuks Jonia <chuksjonia@gmail.com> wrote:

Remember in CEH, u will just be taught how to use tools, but for real
testing like Eric said, automated tests(use of tools) is just part of
recon, but manually testing a network gives you more info about entry
points, that you wont think about.

Earnest and Young fails to give clients a thorough test, i have seen
alot of clients complaining, that they tested their webserver, and a
week didn't go without being compromised. Others would get tested by E
and Y, and when they get to hire an experienced consultant, very funny
vulnerabilities are found that E and Y didn't see. This is because
they rely alot in tools. And organizations should learn how to analyze
who takes their Security Tests.

./Chuks

On Mon, Apr 20, 2009 at 5:38 PM, Eric Mugo <kabugum@gmail.com> wrote:
> i'm not sure but you can call ernst and young and i'm sure they will give
> you all the information.
>
> On Mon, Apr 20, 2009 at 4:55 PM, Jamal Mohamed <jamal.worx@gmail.com> wrote:
>>
>> @Eric
>> How do I sign up for that C.E.H Class.
>>
>> <%= Jamal %>
>>
>> On Mon, Apr 20, 2009 at 3:20 PM, chuks Jonia <chuksjonia@gmail.com> wrote:
>>>
>>> I type so fast i end up debugging ten lines, BTW, i was very hungry
>>> when typing that,
>>> e.g <input name="cmd" type="buttin" class="formsgry" value="kancel"
>>> onklick="javascript:location='<?php echo $Page;?>'">
>>>
>>> Imagine the errors on above!
>>>
>>> Thanks for that.
>>>
>>> On Mon, Apr 20, 2009 at 3:07 PM, Evans Ikua <ikua.evans@gmail.com> wrote:
>>> >
>>> > On Mon, Apr 20, 2009 at 2:42 PM, chuks Jonia <chuksjonia@gmail.com>
>>> > wrote:
>>> >>
>>> >> African E-develpment also has IT Security courses, you can call Harry
>>> >> which is also in this list.
>>> >
>>> > ...Harry, who is also on this list, not....."which is also in this
>>> > list"
>>> >
>>> > Chuks, how do you write code?
>>> >
>>> >
>>> >>
>>> >>
>>> >> I would also advise joining security forums for more info about such
>>> >> trainings since they are always posted by the respective
>>> >> organizations.
>>> >>
>>> >> ./Chuks
>>> >>
>>> >> On Mon, Apr 20, 2009 at 1:27 PM, Eric Mugo <kabugum@gmail.com> wrote:
>>> >> > the best security course, institution.......hmmm its very
>>> >> > tricky....you can start with ceh then build with more advanced ones
>>> >> > like the one chuks mentioned....thing is as i have come to realise,
>>> >> > attending security courses counts for little if you want to be a
>>> >> > true
>>> >> > security expert....lots of reading and research (chuks always
>>> >> > stresses
>>> >> > on research alot) is what will help you....i have done automated
>>> >> > security testing (from what i learnt in school) for so long now and
>>> >> > most firewalls and ids easily pick this tools up quickly therefore
>>> >> > manual, random testing is the in thing and no one will teach you
>>> >> > that
>>> >> > in class.... My 2 ndururu's
>>> >> >
>>> >> > Ps. There is a ceh class by ernst and young scheduled for may
>>> >> > complete
>>> >> > with exams at safari club.....
>>> >> >
>>> >> > On 4/20/09, chuks Jonia <chuksjonia@gmail.com> wrote:
>>> >> >> OSCP is great, but you will need a broad view on other security
>>> >> >> certifications coz, this cert is not like the others, its more of
>>> >> >> hardcore hacking, especially manually exploiting systems with your
>>> >> >> own
>>> >> >> made tool.
>>> >> >>
>>> >> >> Anyway, we transferred our Security list , to lists.my.co.ke from
>>> >> >> openworld, u can find the archives here,
>>> >> >> http://lists.my.co.ke/pipermail/security/2009-April/thread.html
>>> >> >>
>>> >> >> Openworld offers the courses, actually, there is a security
>>> >> >> training
>>> >> >> going on from today evening to Friday, if you need to register,
>>> >> >> please
>>> >> >> email Dorcas, she is also in this list.
>>> >> >>
>>> >> >> ./Chuks
>>> >> >>
>>> >> >> On Mon, Apr 20, 2009 at 12:26 PM, Jamal Mohamed
>>> >> >> <jamal.worx@gmail.com>
>>> >> >> wrote:
>>> >> >>> @Janet
>>> >> >>> Try going to remote-exploit and do the course OCSP, that is mainly
>>> >> >>> for
>>> >> >>> backtrack, if you are a linux geek(like mwa).Also i think it is
>>> >> >>> 800$,
>>> >> >>> if u
>>> >> >>> have that cash
>>> >> >>>
>>> >> >>> Cheers,
>>> >> >>> Jamal
>>> >> >>>
>>> >> >>> On Mon, Apr 20, 2009 at 12:08 PM, Odhiambo Washington
>>> >> >>> <odhiambo@gmail.com>
>>> >> >>> wrote:
>>> >> >>>>
>>> >> >>>> On Mon, Apr 20, 2009 at 12:02 PM, Janet Karani
>>> >> >>>> <karanijanet@hotmail.com>
>>> >> >>>> wrote:
>>> >> >>>>>
>>> >> >>>>> Good People,
>>> >> >>>>>
>>> >> >>>>> I need to know where one can get the best training in IT
>>> >> >>>>> Security
>>> >> >>>>> and
>>> >> >>>>> Linux/Unix.
>>> >> >>>>
>>> >> >>>> I wonder if there is one locally. Not sure of abroad either. It
>>> >> >>>> Security
>>> >> >>>> is such a broad subject which I don't think can be taught as a
>>> >> >>>> curriculum.
>>> >> >>>> Linux/Unix can be taught quite easily, including the security
>>> >> >>>> around
>>> >> >>>> them.
>>> >> >>>>
>>> >> >>>> --
>>> >> >>>> Best regards,
>>> >> >>>> Odhiambo WASHINGTON,
>>> >> >>>> Nairobi,KE
>>> >> >>>> +254733744121/+254722743223
>>> >> >>>> _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
>>> >> >>>> "Clothes make the man. Naked people have little or no influence
>>> >> >>>> on
>>> >> >>>> society."
>>> >> >>>> -- Mark Twain
>>> >> >>>>
>>> >> >>>> _______________________________________________
>>> >> >>>> Skunkworks mailing list
>>> >> >>>> Skunkworks@lists.my.co.ke
>>> >> >>>> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
>>> >> >>>> Other services @ http://my.co.ke
>>> >> >>>> Other lists
>>> >> >>>> -------------
>>> >> >>>> Skunkworks announce:
>>> >> >>>>
>>> >> >>>> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
>>> >> >>>> Science - http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
>>> >> >>>> kazi - http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
>>> >> >>>>
>>> >> >>>
>>> >> >>>
>>> >> >>> _______________________________________________
>>> >> >>> Skunkworks mailing list
>>> >> >>> Skunkworks@lists.my.co.ke
>>> >> >>> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
>>> >> >>> Other services @ http://my.co.ke
>>> >> >>> Other lists
>>> >> >>> -------------
>>> >> >>> Skunkworks announce:
>>> >> >>> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
>>> >> >>> Science - http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
>>> >> >>> kazi - http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
>>> >> >>>
>>> >> >>>
>>> >> >>
>>> >> >>
>>> >> >>
>>> >> >> --
>>> >> >> --
>>> >> >> Gichuki John Ndirangu, C.E.H , C.P.T.P, O.S.C.P
>>> >> >> I.T Security Analyst and Penetration Tester
>>> >> >> infosigmer@inbox.com
>>> >> >>
>>> >> >> {FORUM}http://lists.my.co.ke/pipermail/security/
>>> >> >> http://nspkenya.blogspot.com/
>>> >> >> http://chuksjonia.blogspot.com/
>>> >> >> http://www.kamongo.co.ke/
>>> >> >> _______________________________________________
>>> >> >> Skunkworks mailing list
>>> >> >> Skunkworks@lists.my.co.ke
>>> >> >> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
>>> >> >> Other services @ http://my.co.ke
>>> >> >> Other lists
>>> >> >> -------------
>>> >> >> Skunkworks announce:
>>> >> >> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
>>> >> >> Science - http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
>>> >> >> kazi - http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
>>> >> >>
>>> >> > _______________________________________________
>>> >> > Skunkworks mailing list
>>> >> > Skunkworks@lists.my.co.ke
>>> >> > http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
>>> >> > Other services @ http://my.co.ke
>>> >> > Other lists
>>> >> > -------------
>>> >> > Skunkworks announce:
>>> >> > http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
>>> >> > Science - http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
>>> >> > kazi - http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
>>> >> >
>>> >>
>>> >>
>>> >>
>>> >> --
>>> >> --
>>> >> Gichuki John Ndirangu, C.E.H , C.P.T.P, O.S.C.P
>>> >> I.T Security Analyst and Penetration Tester
>>> >> infosigmer@inbox.com
>>> >>
>>> >> {FORUM}http://lists.my.co.ke/pipermail/security/
>>> >> http://nspkenya.blogspot.com/
>>> >> http://chuksjonia.blogspot.com/
>>> >> http://www.kamongo.co.ke/
>>> >> _______________________________________________
>>> >> Skunkworks mailing list
>>> >> Skunkworks@lists.my.co.ke
>>> >> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
>>> >> Other services @ http://my.co.ke
>>> >> Other lists
>>> >> -------------
>>> >> Skunkworks announce:
>>> >> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
>>> >> Science - http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
>>> >> kazi - http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
>>> >
>>> >
>>> > _______________________________________________
>>> > Skunkworks mailing list
>>> > Skunkworks@lists.my.co.ke
>>> > http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
>>> > Other services @ http://my.co.ke
>>> > Other lists
>>> > -------------
>>> > Skunkworks announce:
>>> > http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
>>> > Science - http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
>>> > kazi - http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
>>> >
>>> >
>>>
>>>
>>>
>>> --
>>> --
>>> Gichuki John Ndirangu, C.E.H , C.P.T.P, O.S.C.P
>>> I.T Security Analyst and Penetration Tester
>>> infosigmer@inbox.com
>>>
>>> {FORUM}http://lists.my.co.ke/pipermail/security/
>>> http://nspkenya.blogspot.com/
>>> http://chuksjonia.blogspot.com/
>>> http://www.kamongo.co.ke/
>>> _______________________________________________
>>> Skunkworks mailing list
>>> Skunkworks@lists.my.co.ke
>>> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
>>> Other services @ http://my.co.ke
>>> Other lists
>>> -------------
>>> Skunkworks announce:
>>> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
>>> Science - http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
>>> kazi - http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
>>
>>
>> _______________________________________________
>> Skunkworks mailing list
>> Skunkworks@lists.my.co.ke
>> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
>> Other services @ http://my.co.ke
>> Other lists
>> -------------
>> Skunkworks announce:
>> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
>> Science - http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
>> kazi - http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
>>
>
>
> _______________________________________________
> Skunkworks mailing list
> Skunkworks@lists.my.co.ke
> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
> Other services @ http://my.co.ke
> Other lists
> -------------
> Skunkworks announce:
> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
> Science - http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
> kazi - http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
>
>

--
--
Gichuki John Ndirangu, C.E.H , C.P.T.P, O.S.C.P
I.T Security Analyst and Penetration Tester
infosigmer@inbox.com

{FORUM}http://lists.my.co.ke/pipermail/security/
http://nspkenya.blogspot.com/
http://chuksjonia.blogspot.com/
http://www.kamongo.co.ke/
_______________________________________________
Skunkworks mailing list
Skunkworks@lists.my.co.ke
http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
Other services @ http://my.co.ke
Other lists
-------------
Skunkworks announce: http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
Science - http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
kazi - http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general