Passed 2 security exams in one sitting
passed my Security+(82
and my CIW-Security(82%) yesterday in one sitting. Both test are very simmilar. If you can pass security+ you can pass CIW-Security. Major things to study if you take both test are:
MAC
DAC
RBAC
ACL
OS Hardening
Symmetric crypto (DES, 3DES, BlowFish, Kerberos, IDEA) (vuln.)
Asymmetric crypto (RSA, Diffie-Hellman, EAS, RC4)
Hashes (MD4, MD5, SHA-1)
Audits
Malicious Code (Virus, Logic Bomb, Trojan Horse, worms, back doors)
Attacks (DDos/DOS, MITM, Brute Force, Dictionary, Hi-Jacking, Social Engineering) Know how to thwart these attacks
Daemons/Services (vuln.)
Mail relays
S/MIME
X.509v3
Digital Certificates
PKI (CA, RA, CP, PKCS)
Threat Analysis
ping scanner
port scanner
NsLookup
TraceRoute
nmap
Chain of Custody
Rlogin
FTP (vuln.)
SNMP (vuln.)
CGI (vuln.)
PPTP
L2TP
IPSec
VPN
Tokens
Biometrics
802.11x
WEP
WTLS
Active X (vuln.)
Java (vuln.)
IDS (intrusion Detection System)
Honeypots
Bastion Host
Account and password management
know well known ports (0 to 1023) like the following:
FTP data
FTP Control
Telnet
SSH
SMTP
TACACS
DNS
HTTP
KERBEROS
Pop3
NNTP
Netbios
IMAPv4
Snmp
LDAP
SSL
DHCP
also know the ports for:
RADIUS
PPTP
L2TP
There is a lot more to study but I can't think of them right now.
and my CIW-Security(82%) yesterday in one sitting. Both test are very simmilar. If you can pass security+ you can pass CIW-Security. Major things to study if you take both test are:MAC
DAC
RBAC
ACL
OS Hardening
Symmetric crypto (DES, 3DES, BlowFish, Kerberos, IDEA) (vuln.)
Asymmetric crypto (RSA, Diffie-Hellman, EAS, RC4)
Hashes (MD4, MD5, SHA-1)
Audits
Malicious Code (Virus, Logic Bomb, Trojan Horse, worms, back doors)
Attacks (DDos/DOS, MITM, Brute Force, Dictionary, Hi-Jacking, Social Engineering) Know how to thwart these attacks
Daemons/Services (vuln.)
Mail relays
S/MIME
X.509v3
Digital Certificates
PKI (CA, RA, CP, PKCS)
Threat Analysis
ping scanner
port scanner
NsLookup
TraceRoute
nmap
Chain of Custody
Rlogin
FTP (vuln.)
SNMP (vuln.)
CGI (vuln.)
PPTP
L2TP
IPSec
VPN
Tokens
Biometrics
802.11x
WEP
WTLS
Active X (vuln.)
Java (vuln.)
IDS (intrusion Detection System)
Honeypots
Bastion Host
Account and password management
know well known ports (0 to 1023) like the following:
FTP data
FTP Control
Telnet
SSH
SMTP
TACACS
DNS
HTTP
KERBEROS
Pop3
NNTP
Netbios
IMAPv4
Snmp
LDAP
SSL
DHCP
also know the ports for:
RADIUS
PPTP
L2TP
There is a lot more to study but I can't think of them right now.
Comments
-
janmike
Member Posts: 3,076
Congrats on the new certs!"It doesn't matter, it's in the past!"--Rafiki -
jsond
Member Posts: 66 ■■□□□□□□□□
Congrats on passing 2 exams! That must have been a very nice feeling of accomplishment.
Thanks for sharing some of the important info to know for the SEC+, hoping to take mine w/in the next 3-4 weeks. -
antonio banderas
Member Posts: 102
HÆLLRÆZOR wrote:passed my Security+(82 and my CIW-Security(82%) yesterday in one sitting. Both test are very simmilar. If you can pass security+ you can pass CIW-Security. Major things to study if you take both test are:
interesting. I think I will look over the CIW-Security test objectives to make sure I am ready for the Security+ test. Thanks for the insite. Very informative....
Congrads on the pass....Network/Radiation Oncology Analyst III
