Now that I have you where I want you, I need to pick your brain. (I'll wait while you go get it out of its jar.)
First a brief background... I've been involved in computers for around 15 years now (geez, I feel old). I am a quick study, especially when it's a subject that interests me. I started out with a WordPerfect class, and through personal study ended up doing tech support for a large government office with a small satellite office, along with some minor network stuff.
I've pondered college and do not believe it's the right step for me at this time, though I'm not opposed to taking some classes to beef up my knowledge. I'm working on learning Python, but other than that, don't know any languages to speak of. Luckily I have a great source to pester with questions (my hubby , software dev & techie extraordinairre). I subscribe to a bunch of NetSec people across blogs and Twitter. Most of the posts are horribly out of my league of understanding, but I'm trying!
Any way, what I'd like to know is...
1) How would you recommend getting started on a career toward Network Security/Network Pen Tester?
b) What certs should I start with?
iii) What cons would be most helpful? ($$ is an issue) Right now I'm trying to get a hold of the presentations after the fact, since I can't attend.
* What associations are important to be a part of? I've noticed most charge an arm and a leg to join, and since I only have two of each... That limits me to two associations.
Anything else you'd recommend, I'm all ears... books? white papers? websites? We do have a home network that I can mess with, provided there's not too much downtime (see aforementioned husband reference.)
Leave a comment, contact me on Twitter , or contact me at career HAT geekgrrl.otherinbox.com (drop the H). Thank you. :)
YEHG.Net Greasemonkey Web Page Fingerprinter [x]
[URL]
http://posterous.com/posts/new?site=38951
[Headers]
Server:
Mongrel 1.1.5
Date: Mon, 03 Nov 2008 17:10:27 GMT
Status: 200 OK
X-Runtime: 0.08801
Etag: "e5f76ff2514bcd96ab4b34161c8d46f6"
Cache-Control: private, max-age=0, must-revalidate
Content-Type: text/html; charset=utf-8
Set-Cookie: _sharebymail_session_id=2e1a812e93f2c929be15fd828e111188; domain=.posterous.com; path=/
Via: 1.1 posterous.com
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-length:
6280 Cookie: _sharebymail_session_id=2e1a812e93f2c929be15fd828e111188; email=posterous%40geekgrrl.otherinbox.com; auth_token=7460613815e0d19e9e8f7fc9a463a8f3da22de68; __utma=1.2225791532961156400.1225732078.1225732078.1225732078.1; __utmb=1.4.10.1225732078; __utmc=1; __utmz=1.1225732078.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); sessionCookie=GX5A7L0IXYKPHJ7BZZ5KQS79N8P2LQ0E; wooTracker=LG3RMA22JST09HW49AP3HU5GXOH4HM57
=>
Edit Cookie
[RECON]
---Lookup--- Webhostinfo DNSStuff RobtexDNS Network DNSRecords DomainTools SamSpade Host2IP Netcraft WhatSite Netcraft SiteReport Network Tracert Network Lookup Network Whois Betterwhois Network Express PortScan1 PortScan2 FlashPortScan MX Profile MX Lookup MX Records dirIndexing cache: link: site: email file:pdf file:xls file:xml file:doc file:ppt file:txt file:rtf file:conf file:config file:ini file:lst file:zip file:gzip file:eml file:ps file:exe file:rpm file:db file:mdb file:log file:passwd file:pwd [
Launch all ] [
Prepend Proxy ]
[BruteForce Scan]
-- Select --- Dic-Small Dic-Comprehensive Big Catala Common Euskera Medium Passlist Spanish Subdomains Userlist Weak_passwords_module_passlist Weak_passwords_module_userlist Common_pass Names Apache Cgi Cgis Coldfusion Domino Fatwire Fatwire_pagenames Frontpage Iis Iplanet Jrun Netware Oracle9i Sharepoint Sunas Tests Tomcat Vignette Weblogic Websphere o-iis o-cfm o-jsp [
Start ] [
View ]
Loading ...
Do other stuffs.
Seem slowly? As it doesn't do multi-requests,
it's likely that web server IDS may not detect scanning.
But it's for dictionary scanning only.
[Fuzz URL]
http://posterous.com/posts/new?site=38951
Select Fuzz Type:
Fuzz [default] BackupFiles HeaderCheck CSRF CS Framing [
Help ]
Fuzz Options Fuzz Db:
-- Check -- 1) ---!><!--">xxx<P>yyy.. 2) "><script>".. 3) <script>..</script>.. 4) <<script>..;//<<.. 5) <script>..</script>.. 6) '><script>..<.. 7) "><script>..;</script>.. 8) \";..;//.. 9) %3cscript%3e..;%3c/script%3e.. 10) %3cscript%3e..;%3c%2fscript%3e.. 11) %3Cscript%3E..;%3C/script%3E.. 12) <script>..;</sc.. 13) <script>..;<.. 14) <xss><script>alert('XSS')<.. 15) <IMG%20SRC='javascript:.. 16) <IMG SRC="javascript:alert('XSS'.. 17) <IMG SRC="javascript:alert('XSS'.. 18) 19)
20) <IMG SRC=javascript:alert("XSS&quo.. 21) <IMG SRC=`javascript:alert("'XSS'.. 22)
23) <IMG SRC=javascript:alert(String.fromCharCode(8.. 24) <IMG%20SRC='javasc ript:.. 25) <IMG SRC="jav ascript:alert('XSS'.. 26) <IMG SRC="jav	ascript:alert('.. 27) <IMG SRC="jav
ascript:alert('.. 28) <IMG SRC="jav
ascript:alert('.. 29) <IMG SRC="  javascript:alert(
YEHG.Net Greasemonkey Web Page Fingerprinter [x]
[URL]
http://posterous.com/posts/new?site=38951
[Headers]
Server:
Mongrel 1.1.5
Date: Tue, 04 Nov 2008 18:03:09 GMT
Status: 200 OK
X-Runtime: 0.03600
Etag: "84f8a08bea26f7a2d25bcdc1c33c4555"
Cache-Control: private, max-age=0, must-revalidate
Content-Type: text/html; charset=utf-8
Set-Cookie: _sharebymail_session_id=2e1a812e93f2c929be15fd828e111188; domain=.posterous.com; path=/
Via: 1.1 posterous.com
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-length:
6381 Cookie: _sharebymail_session_id=2e1a812e93f2c929be15fd828e111188; email=posterous%40geekgrrl.otherinbox.com; auth_token=7460613815e0d19e9e8f7fc9a463a8f3da22de68; __utma=1.2225791532961156400.1225732078.1225732078.1225820991.2; __utmc=1; __utmz=1.1225820991.2.2.utmcsr=geekgrrl.posterous.com|utmccn=(referral)|utmcmd=referral|utmcct=/; sessionCookie=GX5A7L0IXYKPHJ7BZZ5KQS79N8P2LQ0E; wooTracker=LG3RMA22JST09HW49AP3HU5GXOH4HM57; __utmb=1.5.10.1225820991
=>
Edit Cookie
[RECON]
---Lookup--- Webhostinfo DNSStuff RobtexDNS Network DNSRecords DomainTools SamSpade Host2IP Netcraft WhatSite Netcraft SiteReport Network Tracert Network Lookup Network Whois Betterwhois Network Express PortScan1 PortScan2 FlashPortScan MX Profile MX Lookup MX Records dirIndexing cache: link: site: email file:pdf file:xls file:xml file:doc file:ppt file:txt file:rtf file:conf file:config file:ini file:lst file:zip file:gzip file:eml file:ps file:exe file:rpm file:db file:mdb file:log file:passwd file:pwd [
Launch all ] [
Prepend Proxy ]
[BruteForce Scan]
-- Select --- Dic-Small Dic-Comprehensive Big Catala Common Euskera Medium Passlist Spanish Subdomains Userlist Weak_passwords_module_passlist Weak_passwords_module_userlist Common_pass Names Apache Cgi Cgis Coldfusion Domino Fatwire Fatwire_pagenames Frontpage Iis Iplanet Jrun Netware Oracle9i Sharepoint Sunas Tests Tomcat Vignette Weblogic Websphere o-iis o-cfm o-jsp [
Start ] [
View ]
Loading ...
Do other stuffs.
Seem slowly? As it doesn't do multi-requests,
it's likely that web server IDS may not detect scanning.
But it's for dictionary scanning only.
[Stat]
Total Form: 0
Total Link: 4
[Fuzz URL]
http://posterous.com/posts/new?site=38951
Select Fuzz Type:
Fuzz [default] BackupFiles HeaderCheck CSRF CS Framing [
Help ]
Fuzz Options Fuzz Db:
-- Check -- 1) ---!><!--">xxx<P>yyy.. 2) "><script>".. 3) <script>..</script>.. 4) <<script>..;//<<.. 5) <script>..</script>.. 6) '><script>..<.. 7) "><script>..;</script>.. 8) \";..;//.. 9) %3cscript%3e..;%3c/script%3e.. 10) %3cscript%3e..;%3c%2fscript%3e.. 11) %3Cscript%3E..;%3C/script%3E.. 12) <script>..;</sc.. 13) <script>..;<.. 14) <xss><script>alert('XSS')<.. 15) <IMG%20SRC='javascript:.. 16) <IMG SRC="javascript:alert('XSS'.. 17) <IMG SRC="javascript:alert('XSS'.. 18) 19)
20) <IMG SRC=javascript:alert("XSS&quo.. 21) <IMG SRC=`javascript:alert("'XSS'.. 22)
23) <IMG SRC=javascript:alert(String.fromCharCode(8.. 24) <IMG%20SRC='javasc ript:.. 25) <IMG SRC="jav ascript:alert('XSS'.. 26) <IMG SRC="jav	ascript:alert('.. 27) <IMG SRC="jav
ascript:alert('.. 28) <IMG SRC="jav
ascript:alert('.. 29) <IMG SRC="  javascript:alert(
YEHG.Net Greasemonkey Web Page Fingerprinter [x]
[URL]
http://posterous.com/posts/edit/191540
[Headers]
Server:
Mongrel 1.1.5
Date: Tue, 04 Nov 2008 18:12:54 GMT
Status: 200 OK
X-Runtime: 0.06010
Etag: "152914bf36e662722f4995844fd1ff75"
Cache-Control: private, max-age=0, must-revalidate
Content-Type: text/html; charset=utf-8
Set-Cookie: _sharebymail_session_id=2e1a812e93f2c929be15fd828e111188; domain=.posterous.com; path=/
Via: 1.1 posterous.com
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-length:
60481 Cookie: _sharebymail_session_id=2e1a812e93f2c929be15fd828e111188; email=posterous%40geekgrrl.otherinbox.com; auth_token=7460613815e0d19e9e8f7fc9a463a8f3da22de68; __utma=1.2225791532961156400.1225732078.1225732078.1225820991.2; __utmc=1; __utmz=1.1225820991.2.2.utmcsr=geekgrrl.posterous.com|utmccn=(referral)|utmcmd=referral|utmcct=/; sessionCookie=GX5A7L0IXYKPHJ7BZZ5KQS79N8P2LQ0E; wooTracker=LG3RMA22JST09HW49AP3HU5GXOH4HM57; __utmb=1.6.10.1225820991
=>
Edit Cookie
[RECON]
---Lookup--- Webhostinfo DNSStuff RobtexDNS Network DNSRecords DomainTools SamSpade Host2IP Netcraft WhatSite Netcraft SiteReport Network Tracert Network Lookup Network Whois Betterwhois Network Express PortScan1 PortScan2 FlashPortScan MX Profile MX Lookup MX Records dirIndexing cache: link: site: email file:pdf file:xls file:xml file:doc file:ppt file:txt file:rtf file:conf file:config file:ini file:lst file:zip file:gzip file:eml file:ps file:exe file:rpm file:db file:mdb file:log file:passwd file:pwd [
Launch all ] [
Prepend Proxy ]
[BruteForce Scan]
-- Select --- Dic-Small Dic-Comprehensive Big Catala Common Euskera Medium Passlist Spanish Subdomains Userlist Weak_passwords_module_passlist Weak_passwords_module_userlist Common_pass Names Apache Cgi Cgis Coldfusion Domino Fatwire Fatwire_pagenames Frontpage Iis Iplanet Jrun Netware Oracle9i Sharepoint Sunas Tests Tomcat Vignette Weblogic Websphere o-iis o-cfm o-jsp [
Start ] [
View ]
Loading ...
Do other stuffs.
Seem slowly? As it doesn't do multi-requests,
it's likely that web server IDS may not detect scanning.
But it's for dictionary scanning only.
[Stat]
Total Form: 0
Total Link: 7
[Fuzz URL]
http://posterous.com/posts/edit/191540?=
Select Fuzz Type:
Fuzz [default] BackupFiles HeaderCheck CSRF CS Framing [
Help ]
Fuzz Options Fuzz Db:
-- Check -- 1) ---!><!--">xxx<P>yyy.. 2) "><script>".. 3) <script>..</script>.. 4) <<script>..;//<<.. 5) <script>..</script>.. 6) '><script>..<.. 7) "><script>..;</script>.. 8) \";..;//.. 9) %3cscript%3e..;%3c/script%3e.. 10) %3cscript%3e..;%3c%2fscript%3e.. 11) %3Cscript%3E..;%3C/script%3E.. 12) <script>..;</sc.. 13) <script>..;<.. 14) <xss><script>alert('XSS')<.. 15) <IMG%20SRC='javascript:.. 16) <IMG SRC="javascript:alert('XSS'.. 17) <IMG SRC="javascript:alert('XSS'.. 18) 19)
20) <IMG SRC=javascript:alert("XSS&quo.. 21) <IMG SRC=`javascript:alert("'XSS'.. 22)
23) <IMG SRC=javascript:alert(String.fromCharCode(8.. 24) <IMG%20SRC='javasc ript:.. 25) <IMG SRC="jav ascript:alert('XSS'.. 26) <IMG SRC="jav	ascript:alert('.. 27) <IMG SRC="jav
ascript:alert('.. 28) <IMG SRC="jav
ascript:alert('.. 29) <IMG SRC="  javascript:alert(
