Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: OPST vs. CEH
From: "Kenzo" <kenzo_chin () hotmail com>
Date: Fri, 6 Feb 2004 14:03:20 -0600

Thanks for all the responces, I will sign up for the upcoming training
session from redvolution.
I guess it covers OPST cert.


----- Original Message ----- 
From: "Craig, William (Atlanta, GA)" <craigw01 () unisourcelink com>
To: "'kenzo'" <kenzo_chin () hotmail com>; <pen-test () securityfocus com>
Cc: "'John Lampe'" <jwlampe () aceryder com>
Sent: Friday, February 06, 2004 10:35 AM
Subject: RE: OPST vs. CEH


Yes, the CEH or Certified Ethical Hacker is similar to the OSSTMM
cert. It dos not cover the business side of pen testing and the OSSTMM dos
not teach you enough to become a good pen tester ether. However the CEH
version 3 is far more superior in measuring the true skills of a Pen
tester.
You are required to now and understand some form of computer language such
as Cxxx / Perl / visual basic etc. You are required to understand how
buffer
overflow works and be able to reverse engineer code to find the line where
the overflow took place. You are required to be able to look at some code
and be able to identify what exploit it is etc. You are required to know
and
understand all forms of viruses and worms along with the standard
components
of pen testing. You are required to understand hashing of password. And be
able to use a calculator to break down passwords. You are required to have
performed and understand the following techniques session hijacking,
spoofing, dll injections etc. The old version of CEH 2.3 was pretty easy.
However the version 3.0 is not for the fly bye test taker. I have chosen
to
take both exams. You will need knowledge from both to become well rounded.
My 2 cents come from experience only. I'm not part of any of the two
groups.
Good luck with your choice

-----Original Message-----
From: kenzo [mailto:kenzo_chin () hotmail com]
Sent: Thursday, February 05, 2004 12:54 AM
To: pen-test () securityfocus com
Subject: OPST vs CEH

I'm thinking about taking one of these certs. OPST (OSSTMM PROFESSIONAL
SECURITY TESTER)
 or CEH (certified ethical hacker)
I've read about the two, and they seem to be kind of the same thing.
I know that some people in here were talking about the opst, but what
about
the ceh?
Has anyone taking the CEH or both?
Please let me know.

thanks.

--------------------------------------------------------------------------
-
--------------------------------------------------------------------------
--


---------------------------------------------------------------------------
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]