After almost 4 months of taking my class for a couple hours a day, yesterday I took the GIAC Security Essentials Certification test, and passed with a 94%. I was shooting for >90%, and found it to easier than I was thinking it was going to be.
Next up is the Gold Certification for GSEC, which requires “candidates to complete a technical report covering an important area of security related to the certification the student is seeking.” I have some different thoughts on some topics, but if you guys can think of anything interesting, and especially relevant to my work with New Tribes Mission, let me know.
As for a review of the class, which I took from SANS, SANS GSEC 401 through their OnDemand program, I thought it was excellent. Once you get past a few typos, and the obviousy-work-in-progress OnDemand program, I thought that the instructors were great, especially Dr. Eric Cole, and I thought the subjects covered were very good. Probably my favorite portions of the class was the Cryptology section and the indepth, low-level TCP/IP instruction.
That’s it for about now-
btw, been following the whole Dan Kaminsky DNS Bug / Matasano disclosure fiasco–Check it out for some interesting, thought-provoking thoughts on how to handle vulnerability disclosure (or how NOT to handle it, as some would quip)