GCIA Study material
Hi All,
I am planning to prepare for SANS GCIA exam. Looking for some study materials. I can't afford their training. Can anyone guide me/provide me links for the GCIA study materials.
Thanks in advance.
Kiran
CCNP, CISSP
I am planning to prepare for SANS GCIA exam. Looking for some study materials. I can't afford their training. Can anyone guide me/provide me links for the GCIA study materials.
Thanks in advance.
Kiran
CCNP, CISSP
Comments
-
docrice
Member Posts: 1,706 ■■■■■■■■■■
Check the forum sticky:
http://www.techexams.net/forums/sans-institute-giac-certifications/68043-post-your-sans-giac-study-material-recommendations-here.htmlHopefully-useful stuff I've written: http://kimiushida.com/bitsandpieces/articles/ -
ptilsen
Member Posts: 2,835 ■■■■■■■■■■
The problem with that stick is the JD says "I'll make a summary listing of what is posted here:", which indicates, to me, that the first post is a summary of all worthwhile material and there is no reason to scroll down other than to contribute.
Luckily, I did scroll down and found your excellent post:For the GCIA, I would recommend becoming familiar with TCP/IP headers and protocol behavior as a start. Note - I haven't read all the material below and I'm just listing them as potential good references:
Wireshark Network Analysis
Amazon.com: Wireshark Network Analysis: The Official Wireshark Certified Network Analyst Study Guide (978189393999
: Laura Chappell, Gerald Combs: Books
TCP/IP Illustrated, Volume 1
http://www.amazon.com/TCP-Illustrated-Protocols-Addison-Wesley-Professional/dp/0321336313/ref=sr_1_6?s=books&ie=UTF8&qid=1312869043&sr=1-6
Network Intrusion Detection
Amazon.com: Network Intrusion Detection (3rd Edition) (9780735712652): Stephen Northcutt, Judy Novak: Books
Nmap Network Scanning
http://www.amazon.com/Nmap-Network-Scanning-Official-Discovery/dp/0979958717/ref=sr_1_1?ie=UTF8&qid=1312869082&sr=8-1
IP / TCP / UDP / ICMP headers
TCP/IP Reference
RFC 791 (IP)
RFC 791 - Internet Protocol (RFC791)
RFC 792 (ICMP)
RFC 792 - Internet Control Message Protocol (RFC792)
RFC 793 (TCP)
RFC 793 - Transmission Control Protocol (RFC793)
RFC 768 (UDP)
RFC 768 - User Datagram Protocol (RFC76
RFC 1034 (DNS)
RFC 1034 - Domain names - concepts and facilities (RFC1034)
Snort User's Manual
http://www.snort.org/assets/166/snort_manual.pdf
Any material on Tcpdump
Manpage of TCPDUMP
Binary / hex / decimal systems (this is a random page that I chose as an example)
http://www.blaenkdenum.com/2006/09/binary-and-hexadecimal/
Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection
Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection
Mitnick vs. Shimomura
The Mitnick attack - Computing and Software Wiki
Honeynet Project Challenges
Honeynet Project Challenges | The Honeynet Project
My question for you (and I'm guessing OP would wonder the same thing) is, is that collection sufficient to self-study for and pass the GCIA, given some relevant experience and strong fundamental (CCNP, CISSP for OP) knowledge?