Security Basics mailing list archives
RE: Opinion about CEH
From: "Christopher Carpenter" <ccarpenter () dswa net>
Date: Tue, 4 Oct 2005 15:28:12 -0700
I agree with you, Jason. Unfortunately, the GIAC training materials/challenge tests are prohibitively expensive for people who don't have company sponsorship. In my opinion: CISSP - A certification, favorably viewed by HR drones and management, that is a mile wide and an inch deep. Mostly a management-oriented exam, the CISSP does a good job of introducing important topics. It's up to the security practitioner to learn more in-depth. This is a good first-level certification for a resume. CEH - A certification that teaches the use of currently available exploitation tools. Unfortunately, the CEH focuses too much on the rote memorization of program switches instead of creative thinking and application. That said, it is a good introduction to penetration tools. Be cautious, as some interviewers tend to balk at the word "hacker" on a resume. GCIA, GCIH, etc - When SANS was still requiring a practical, these certifications were the cream of the crop. The practical ensured that the applicant had hands-on experience, thus avoiding paper-MCSE syndrome. Unfortunately, the practical requirement has been dropped, and I expect the quality of GIAC-certified professionals will eventually decrease in proportion. That said, if you can get your hands on their study materials, you'll be in good shape. Chris -----Original Message----- From: Jason [mailto:securitux () gmail com] Sent: Monday, October 03, 2005 3:22 PM To: 'Mark'; 'Steven Kalcevich' Cc: alonzo.llamas () montenegroeditores net; security-basics () lists securityfocus com Subject: RE: Opinion about CEH The CISSP dazzles the management eyes, for sure, but its not that great. It is more of a management type exam, FAR from technical or detail oriented. Very different from the CEH or most GIAC certs. I am doing it now and am not learning much, that's for sure. When I started in security, I already knew what a lock was for :) Of all the certs in the industry, I prefer the SANS GIAC certs. At least when they were making you do practicals. -J -----Original Message----- From: Mark [mailto:elihusmails () gmail com] Sent: Friday, September 30, 2005 8:42 PM To: Steven Kalcevich Cc: alonzo.llamas () montenegroeditores net; security-basics () lists securityfocus com Subject: Re: Opinion about CEH I would not say that CEH is useless. I took the CEH last year and thought the course was OK. I think the only reason the course was good was the instructor. Now I think that if I was paying for these, I would put it into the CISSP. I had a horrible CISSP instructor, but "CISSP" looks better than "CEH". Most people do not know what CEH even is, and those who do, have little respect for it. On 9/30/05, Steven Kalcevich <lists () ciscokid net> wrote:
CEH certification > Useless Regards, Steve Kalcevich CISSP Alonzo Llamas wrote:Hello guys. I was just reading about CEH certification (Ethical Hacker) by ECCouncil, and I' d like to hear opinions about the certification, contents of the course, etc. I mean, its this really useful, someone here has taken the cert? Thanks in advance. --------------------------------------------------------------------- - Alonzo Llamas
Current thread:
- RE: Opinion about CEH, (continued)
- RE: Opinion about CEH Naveen S Pareek (Oct 03)
- Re: Opinion about CEH Mark (Oct 03)
- RE: Opinion about CEH Jason (Oct 04)
- Re: Opinion about CEH Terry Cutler (Oct 03)
- RE: Opinion about CEH Jason (Oct 03)
- Re: Opinion about CEH Steven Kalcevich (Oct 03)
- Re: Opinion about CEH Jared Bergeron (Oct 04)
- Re: Opinion about CEH Steven Kalcevich (Oct 04)
- RE: Opinion about CEH Jason (Oct 03)
- RE: Opinion about CEH Payton, Zack (Oct 03)
- RE: Opinion about CEH Christopher Carpenter (Oct 05)
- RE: Opinion about CEH Ernest Nelson (Oct 06)
- RE: Opinion about CEH Kenton Smith (Oct 06)
- RE: Opinion about CEH Clement Dupuis (Oct 07)
- RE: Opinion about CEH Christian Kopacsi (Oct 05)
- RE: Opinion about CEH Craig Wright (Oct 06)