Passed CySA+ 4-20-2018
Well that test was a bear. Now on to the CASP and then the CRISC when its available. For study--Sybex book and Jason Dion (Udemy) and Joey Muniz's CSA+ videos (Safari books online). I did the test questions from the sybex testbank, but that did little to get me ready other than understanding the questions. Killer test though.
Connect With Me || My Blog Site || Follow Me
Current Certs: A+ | N+ | S+ | Cloud Essentials+ | Project+ | MTA: OSF | CIW: SDA | ITIL: F | CCENT | CCNA R&S | CCNA | LPI Linux Essentials
Currently Working On: JNCIA-MistAI
2022 Goals: JNCIA-MistAI [ ]
Future Certs: CCNP Enterprise
I should have elaborated more - to really pass this test and do well, you need to know Security+/CySA+ material AND have some real world knowledge, especially around vulnerability scanning outcomes. Logs were no issue, but understanding how the true/false positive/negatives look in a scan is a must on the performance stuff. Also, there were questions on Linux commands and applications that surprised me even though I have been working with it since RH3. So grab a Linux command **** sheet to help out. But understanding the true/false positive/negatives really bit me more than anything. So to do well:
1. Everything in the Sybex and Pearson CSA+ books together--both are missing things the other provides.
2. Know the OSI stack - mainly what protocols operate at what levels (Security+)
3. Know crypto (Security+)
4. Know Linux and Windows command line tools - netstat/nmap/dd/ping/ (Sybex and Pearson)
5. Know how to read a log (they were mostly simplified logs)
6. Know code (php/SQL/scripting). I did get some web code, but I know php coding and T-SQL
7. Jason Dion and Joey Muinz's videos are good starting points. Jason Dion's Udemy questions were pretty spot on, but not enough to pass.
8. Download OSSIM or OpenVAS and practice with them. Learn how to read the output.
9. READ THE QUESTION multiple times.
That's my take. Already having studied for the Security+, CISM and CISSP really helped me a ton. I am hoping that material slides over to the CASP. I am an old school infrastructure/security hardware guy trying to convert to cyber (I have read the hand writing on the wall). One plus is studying all this has made me much smarter and given me a broader understanding as to the requirements of the two sides of IS. I am shooting for the defend side and will include cloud in my quest. My best advice is to learn and retain what you are learning for the exam--not to just pass the exam. Just my two cents. Sorry to preach.
Here are some links I found that actually explain it in detail, perhaps this will help you.