Re: OPST vs. CEH

["Kenzo" <kenzo_chin () hotmail com>]

Thanks for all the responces, I will sign up for the upcoming training
session from redvolution.
I guess it covers OPST cert.


----- Original Message ----- 
From: "Craig, William (Atlanta, GA)" <craigw01 () unisourcelink com>
To: "'kenzo'" <kenzo_chin () hotmail com>; <pen-test () securityfocus com>
Cc: "'John Lampe'" <jwlampe () aceryder com>
Sent: Friday, February 06, 2004 10:35 AM
Subject: RE: OPST vs. CEH


> Yes, the CEH or Certified Ethical Hacker is similar to the OSSTMM
> cert. It dos not cover the business side of pen testing and the OSSTMM dos
> not teach you enough to become a good pen tester ether. However the CEH
> version 3 is far more superior in measuring the true skills of a Pen
tester.
> You are required to now and understand some form of computer language such
> as Cxxx / Perl / visual basic etc. You are required to understand how
buffer
> overflow works and be able to reverse engineer code to find the line where
> the overflow took place. You are required to be able to look at some code
> and be able to identify what exploit it is etc. You are required to know
and
> understand all forms of viruses and worms along with the standard
components
> of pen testing. You are required to understand hashing of password. And be
> able to use a calculator to break down passwords. You are required to have
> performed and understand the following techniques session hijacking,
> spoofing, dll injections etc. The old version of CEH 2.3 was pretty easy.
> However the version 3.0 is not for the fly bye test taker. I have chosen
to
> take both exams. You will need knowledge from both to become well rounded.
> My 2 cents come from experience only. I'm not part of any of the two
groups.
> Good luck with your choice
>
> -----Original Message-----
> From: kenzo [mailto:kenzo_chin () hotmail com]
> Sent: Thursday, February 05, 2004 12:54 AM
> To: pen-test () securityfocus com
> Subject: OPST vs CEH
>
> I'm thinking about taking one of these certs. OPST (OSSTMM PROFESSIONAL
> SECURITY TESTER)
>  or CEH (certified ethical hacker)
> I've read about the two, and they seem to be kind of the same thing.
> I know that some people in here were talking about the opst, but what
about
> the ceh?
> Has anyone taking the CEH or both?
> Please let me know.
>
> thanks.
>
> --------------------------------------------------------------------------
-
> --------------------------------------------------------------------------
--
>

---------------------------------------------------------------------------
----------------------------------------------------------------------------