I don’t distribute them because (in addition to the you’re far better off creating your own factor) the material is constantly being revised so they would be out of date. x��ZmS�H�N�a>�[g��hF��u@`� I��m��r��|1��E[����ћmIl��,�5u��Ow���t����)?�J"���~:�e,"C�b!c?5Z������;�J}�A,vw/ww�N����Cqy�w�? I have linked as many as I am aware of below. Sometimes you won’t like any of your options but you still need to identify the one that the test is looking for. Learn vocabulary, terms, and more with flashcards, games, and other study tools. For the first course, I relied more on SANS index and barely made any edits. 2. A few months ago I finally decided to go for my GCFA certification. It should also be noted that when I took SANS 504, the instructor actually gives links to unvetted SANS 504 indexes by previous students. I have just registered for the SEC511 course, which I would like to take also the GMON certification exam for it. Excellent post and thank you for taking the time. Gcih - sans 504. laughing_man Member Posts: 84 November 2013 in GIAC. The steps below detail how to build an index that will help you pass your SANS GIAC exam. Agree 100%. I have worked closely with several GSEs, and have established relationships with several sans course authors. I disagree. Do the instructor provide you with specific books to study for the certification during the course or you need to look for the material yourself? 4 0 obj I’ve talked with Chris about his script before. Seth did create a basic index which was made available to the class. Overall I'm not a huge fan of the SANS style brain dump/fire hose approach but if you are going to do it then indexing the text is a great way to reinforce the material. The most important book to know/index precisely is the 4/5 from SANS FOR508 in my opinion. GCIH already breaks it down. SANS Cheat sheets. Tracked down your SANS course tool and software cheat sheets! Any examples I made bold. Those exams are costly to take and I would never want anyone using out of date materials that I provided as a guide. SEC504 was my second class (behind CISSP prep) and it was an excellent class. Thanks! I had to rush on the last part of the exam and never felt comfortable. If you understand the concept, find the detail with concept index. That’s why just grabbing one from someone else won’t help much. Step 5: Edit SANS index at the back of book 5 (see below). Index. Pingback: GCIH – GIAC Certified Incident Handler – Netlock Security. Do you know where I can find samples of this test to get used to the type of questions of the real exam? An index can’t be a crutch for not understanding the material, just a quick reference for verification. Learn more about SANS OnDemand. Remember that your index can include anything. SANS Security Essentials curriculum consists of courses designed to help you gain the knowledge and hands-on skills you need to succeed as a security professional. I currently am a GSEC, GCFA, GPEN, GSNA, GCIA, GCIH, GCWN, GCCC, CISSP. ( 5 / 69 Matt, Same post test process but you probably won’t have a ton to add. Your indexing method i really great!! Studying : GPEN Reading : SANS SEC560 I really wanted to prepare for my GCIH exam the right way so while I was at the conference I asked several individuals how they prepared their index. To stay on top you must have a strong foundation in the essentials of security. Create a spreadsheet with tabs labeled for each book in the course. The windows commands and Linux commands are also self-explanatory. 2 0 obj I 100% agree about needing to read the books and understand them in conjunction with an index. SEC504 will prepare you to turn the tables on computer attackers. Conrad and Cole talk about that a lot in the SANS CISSP prep course. Thanks a bunch mate. I like to complete my index and print a rough draft before I take a practice test. For example, “503.1”, “503.2 + 503.3”, etc. Are there tool-specific questions on the exam? Step 6: Take practice exams (see below). <>/Font<>/ProcSet[/PDF/Text/ImageB/ImageC/ImageI] >>/MediaBox[ 0 0 612.09 792.12] /Contents 5 0 R/Group<>/Tabs/S>> %���� Index - Tools By Keyword (SANS 504-B) DNS Transfer | nslookup set type=any ls-d...( 2 / 25 ) Dnscat | ports over DNS...( 3 / 7 ) DNSCat2 | Covert Ch trans via DNS...( 5 / 136 ) I only took one GIAC exam, and that was the GSEC. The structure of the material in 504 makes it really easy to look stuff up. I’m glad you found it helpful . I’ve also started sticking a few cheat sheets onto the end of all my indexes. SANS course I cant afford . I followed up with a question on how he formatted his indexes and he offered to have his wife bring one of his when she came into town the next day. Great advice too. 2 weeks a cert. Same basic strategy of going through every page of the books and creating an index of ever topic, ever tool etc. Step 6: Take practice exams (see below). During testing, I recommend: I am finishing up SANS 504 On Demand and am prepairing to take the GCIH. I love the side benefit of having it index things across multiple courses. <> endobj Pingback: Tips, Tricks, and Traps When Prepping for a GIAC Certification Exam – Br0nw3n's World, Pingback: GIAC Certified Incident Handler (GCIH) – @n3tl0kr, Pingback: SEC560 penetration testing course and GPEN review - chosenhacks.com, Your email address will not be published. At some times I ended up answering some questions without checking the Index, I actually knew where the stuff was located. One of the most important parts of preparing for the CISSP is preparing for the types of questions that they ask and putting yourself into the necessary mindset to pick the “best” answer. Step 5: Edit SANS index at the back of book 5 (see below). Make 2 or 3 passes on each book, highlight some stuff etc…. Also, remember you can print up cheat sheets like common ports or anything else and tack them onto the back of your index too. One thing you will need though, any "**** Sheets" they provide. endobj The difference between having no index and 4 year old books to having current materials and a large index was night and day so I’m sure you’ll nail it. It would take longer to modify than it would to make one from scratch. Common ports, a dec-binary-hex conversion chart etc. I found that creating the indexes was an important part of the learning process. The SANS Institute provides some of the best security training in the industry. Studying : GPEN Reading : SANS SEC560 If you need a 50 page index for a course like this then you’re doing something wrong, like maybe not reading the books before hand. <> Would you be willing to sell copies (pdf) of indexes you have prepared? SANS 504 book index. Is there anyway I can get/buy SANS material?? A few months after my GCFA exam I got an opportunity to attend a SANS SEC 504 class. If you’ve taken a few GIAC tests and have had good results, then by all means keep doing what you’re doing. Final thoughts : that exam would have been a total nightmare without the FOR508 training materials. I am a infosec professional, instructor, writer, sans mentor. If available, get a keyword index, or create one with details as a study tool. Vendor: SANS; Exam Questions: 328; Last Updated: November 14th, 2020; Go To SEC504 Questions . Index - Terms By Keyword (SANS 504-B) /dev/kmem | Kernel-Mode Rootkit Linux map of Kernel Memory. I’m kind of sloppy and would not want to attempt to three-hole punch everything and place into a binder, so a binding from a print shop would probably be best and look better. All that said I usually get at least one message a week from someone telling me that my example and explanation really helped them with theirs and that is exactly what I was going for. If you don’t understand the question, keyboard index time, hail Mary, brute force. Quite frankly, i probably spent as much time editing the index than i would have if i created from scratch. If something wasn’t a tool or a windows or Linux command, it went in this section. Index - Terms By Keyword (SANS 504-B) Attack Phase | 3 Phases of an Attack [ 1 / 20 ] Command Shell .vs Terminal | Ctrl Charactors are not handled correctly -- Cause Shell Collapse [ 3 / 150 ] Command Shell .vs Terminal Access | General Overview [ 3 / 149 ] Enum Accounts | Enum Syntax [ 2 / 159 ] Enum Accounts | Enum tool - Usage [ 2 / 166 ] SANS SEC504 (GCIH) was the perfect sequel to the SANS SEC401 (GSEC) course I took over a year ago. Did you print out every page yourself, provide the tabbed dividers, and bring all of the loose sheets to Kinko’s just for binding? These index don’t take much time. I’d love to hear your thoughts on the class as well. I took the SANS FOR 508 Computer Forensics course in 2008. But I did know the material fairly well, I spent close to 80-100 hours reading the books and doing the on-demand video classes (+labs). But if you have your first SANS/GIAC exam coming up and feel like you could use a little extra help, I would seriously consider taking the time to make a comprehensive index. It isn’t what I would consider “complete” but it is a great starting point. Getting a quick look at someone else’s SANS index (even though it was for a different course) really helped me out so here are a few pictures of mine. endobj I went through the course via On Demand from Ed Skoudis and in person from John Strand. This course addresses the latest cutting-edge insidious attack vectors, the "oldie-but-goodie" attacks that are still so prevalent, and everything in between. I was starting to go through the books and adding their own tabs, but it struck me this it isn’t very helpful for finding items, especially under exam conditions. A lot of these people had more SANS certs than I have friends so their methods obviously worked for them. <> I just take five different colored index cards, fold them in half, and make an index per book. I don't think it comprehensive enough or a reason not to make an index yourself. Of course. Then taking a practice test, not for a score, but to validate understanding of the concepts, and the ability find the details with the index. Many of their classes include the so called “Cheat Sheets” which are short documents packed with useful commands and information for a specific topic. 1 0 obj For instance netcat is a tool, but also a command. Not at all. You will often have questions where the correct answer appears as the dumbest/too-simple-to-be-correct one. For example, “503.1”, “503.2 + 503.3”, etc. Can you suggest some books in market or other resources for GCFA. book Abbr. You’re last paragraph made me chuckle. The main section consisted of both items and concepts.