Hi dears,
I just wanted to share first update of this year.
I sat for & passed the SANS GIAC Web Application Penetration Testing - GWAPT - exam on January 14, 2012. I found the exam was pretty tough as compared to the previous GIAC exams I had attempted - GPEN, GCIH, and GREM.
I have been doing web app pentesting for a while. So, most of the tested topics were not new to me. I did a self-study for this exam. I used the following study resources to prepare:
1. SANS GPEN course material
2. OWASP - this site has a lot of good, relevant information on a majority of web app topics.
4. SQL Injection - Attacks & Defense by Justin Clarke - A superb book for injection attacks.
5. Backtrack - Specifically for any or all related tools - load it up & practice various web app testing related tools on this dist.
6. Google - Yeah, search out specific topics, terms, video tutorials, tool demonstrations. This is significant especially if you choose to take the self-study route.
7. Misc Notes - some random, personal notes on various topics.
I know it's not easy to take out 4000+ usd for official course materials. I hope this info will help someone planning self-study to tame this beast.
As always, let me know if you have any questions. I will be glad to help.
KG
7. Misc Notes - some random, personal notes on various topics.
I know it's not easy to take out 4000+ usd for official course materials. I hope this info will help someone planning self-study to tame this beast.
As always, let me know if you have any questions. I will be glad to help.
KG
No comments:
Post a Comment