I have funding to do two SANS Course's. I've already chosen to do
GREM - which is the reverse malware engineering, a topic I am very interested in and a really unique/niche area.
The other two options are as follows:
OPTION 1) SANS FOR572 -
Advanced Network Forensics: Threat Hunting, Analysis and Incident Response
GNFA certification : GIAC Network Forensic Analyst
- I do digital forensics at the minute but not much networking stuff
- I do some incident response but I am law enforcement so most of it is just asking companies for data ... it would be good to do it myself and learn more
- I don't do any threat hunting but I am really interested in this area
OPTION 2) SEC660: Advanced Penetration Testing, Exploit Writing, and
Ethical Hacking
GXPN certification - Exploit researcher and advanced penetration tester
- I am reluctant about this as I think I would find it very difficult (I'm not against working hard but genuinely not sure if it's beyond my abilities)
- Also I'm not really interested in being a pen tester ... it's a very niche area and I'm not sure if it's that beneficial given
- However, it may be fit in well with my OSCP and help build on some of my knowledge I have got from that
Any thoughts?
Thanks
