Home > Ask the Security Experts > Questions & Answers
Ask The Security Expert: Questions & Answers
EMAIL THIS

Which ethical hacking course would you recommend?

Ed Tittel EXPERT RESPONSE FROM: Ed Tittel

Pose a Question
Other Security Categories
Meet all Security Experts
Become an Expert for this site
>
QUESTION POSED ON: 13 December 2003

Do you know of any study that compares security courses? I'm looking for an advanced ethical hacking/penetration testing hands-on course. Currently, I'm looking at two courses in particular:

  • Certified Ethical Hacker (CEH) at the Intense School
  • Advanced Ethical Hacking: Expert Penetration Testing at the InfoSec Institute

    I've also looked at the Foundstone courses, but wanted to learn more about these first two. I'm not as interested in getting a certificate as I am in the training provided.

    I already have my CISSP certification and have been doing pen testing and vulnerability assessments for different customers for several years. Also, currently, I'm a systems engineer, but I've been in the computer industry for more than 20 years.

    • >
    EXPERT RESPONSE

    I can only respond to your question on the basis of third-party hearsay (friends of friends who've taken one or the other of the classes), published reports and trolling on various message boards. I can't find any detailed published comparisons or studies on these offerings despite focused Web searches. In fact, to augment what I say here, you'll probably want to do some additional digging yourself as well. That said, I talked to both companies and got some pretty good information from each one.

    In my opinion, the value of instructor led training (ILT) comes primarily from the instructor, and both organizations have heavy-duty, well-known staff teaching these classes. On the Intense School side, instructors for the Professional Hacking class include:

  • Clement Dupuis whose name you may recognize from his well known CISSP study site.
  • John Nunez whose name rings a vague bell as an infosec heavy for me, although I can't seem to locate any additional info on him.
  • Jack Koziol who is the author of a recent and well-regarded book on Snort and worked as a security professional for the banking industry. Koziol also is working on a penetration testing/exploits book for Wiley right now.

    On the InfoSec Institute side, Jack Koziol is also coincidentally their primary instructor for hacking topics where they offer a much broader and deeper curriculum than the Intense School does. In fact, Koziol is in the process of revamping their courses to further increase their range and depth, and is also recruiting more faculty.

    Thus, amusingly, there is rather little difference between the two offerings at a low level, and in terms of preparing for the CEH (Certified Ethical Hacker) you could go either way. But if you want to dig deeply into the subject matter and sharpen your pen testing and related programming skills, the Infosec Institute will give you more of a chance to do just that. I actually got Jack Koziol himself on the phone while researching your question and believe you'll find him to be a great instructor with a lot to offer in terms of knowledge, experience and hands-on exposure to course topics in labs.

    For more info on this topic, visit these SearchSecurity.com resources:
  • On-demand webcast: Audits, assessments and penetration tests
  • Best Web Links: Infosec training, career and events


    • Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


    RELATED RESOURCES
    2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
    Search Bitpipe.com for the latest white papers and business webcasts
    Whatis.com, the online computer dictionary



    Search and Browse the Expert Answer Center
    Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
    Browse our Expert Advice

    TechTarget Security Media
    Information Security View this month\\'s issue and subscribe today.
    Information Security Decisions Apply online for free conference admission.
    		SearchSecurity.com
    HomeNewsMagazineWebcastsWhite PapersLearningAdviceTopicsEventsAbout Us
    SEARCH :     Advanced Search | Site Index Powered by: Search Powered by Google

    About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
    TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

    TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




    All Rights Reserved, Copyright 2003 - 2008, TechTarget | Read our Privacy Policy     		  TechTarget - The IT Media ROI Experts