+ Reply to Thread
Results 1 to 9 of 9
  1. Senior Member YuckTheFankees's Avatar
    Join Date
    Apr 2011
    Location
    USA
    Posts
    1,255

    Certifications
    A few..
    #1

    Default What's your favorite Sans course and why?

    Just like the title says, what's your favorite Sans course and why?
    Reply With Quote Quote  

  2. SS
  3. Completely Clueless TechGromit's Avatar
    Join Date
    Oct 2015
    Location
    Ontario, NY
    Posts
    1,633

    Certifications
    A+, Network +, Sanity+ (Revoked), GSEC, GCIH, GREM
    #2
    So far? SANS 504, very interesting material, well rounded course. Love authors stories on the MP3, also the GCIH is a highly desirable certification by potential employers.
    Still searching for the corner in a round room.
    Reply With Quote Quote  

  4. Senior Member kMastaFlash's Avatar
    Join Date
    Aug 2012
    Posts
    973

    Certifications
    A+,Network+,Security+,EMCISA,MCP,CCENT,CCNA R&S,C|EH,C|HFI,Linux+,LPIC-1,E|CSS,E|CES,GPEN,OSWP,Server+,LPT,GCIH,E|CIH,E|CSA,JNCIA,CPTE,CPTC,eJPT,GNFA
    #3
    560. Overall well designed/balanced course on penetration testing!
    2018: E|CSP,CCNA-Security,CSA+,CCNA Cyber Ops
    2019: CCSK,CISSP,CWNA
    2020: LPIC-2,eLearnSecurity Courses
    Reply With Quote Quote  

  5. Member
    Join Date
    Sep 2015
    Location
    Dallas, TX
    Posts
    47

    Certifications
    GCTI, GNFA, GCFA, GCIH, Sec+
    #4
    508.. it's where I've found real usable Practical knowledge for my everyday Enterprise investigations. A lot of the other defensive courses does give value but rarely used it it's not your job title/description.

    The anti-forensic methods of 508 applies for offensive specialists too.
    Reply With Quote Quote  

  6. California Kid JoJoCal19's Avatar
    Join Date
    Mar 2009
    Location
    Jacksonville, FL
    Posts
    2,595

    Certifications
    CISSP, CISM, CISA, CRISC, GCIA, GSEC, AWS CCP, CEHv8, CHFIv8, ITIL-F, MSISA, BSBA
    #5
    I've only done 401 and 503, however I'd vote for 504 or 560 just based on reading over the course descriptions on SANS' site. Plus Ed Skoudis is the best.
    Have: CISSP, CISM, CISA, CRISC, GCIA, GSEC, AWS CCP, CEHv8, CHFIv8, ITIL-F, BSBA - UF, MSISA - WGU
    Currently Working On: MS Cybersecurity, Learning: Linux/CLI, Git, Python, Pentesting
    Next Up:​ eJPT, eCPPTv2, OSCP
    Studying:​ Code Academy (CLI, Git, Python), eLearnSecurity PTSv3
    Reply With Quote Quote  

  7. Member
    Join Date
    Sep 2017
    Location
    Some Continent
    Posts
    63

    Certifications
    Knowledge is Power
    #6
    So I'll list out what I've taken as context to what one is my favorite:

    SEC504 (GCIH)
    SEC560 (GPEN)
    SEC660 (GXPN)
    SEC617 (GAWN)
    SEC542 (GWAPT)
    SEC575 (GMOB)
    SEC573 (GPYC)

    FOR408/500 (GCFE)
    FOR508 (GCFA)
    FOR518
    FOR526
    FOR585 (GASF)
    FOR578 (GCTI)
    FOR572
    FOR610 (GREM)

    Out of all of them, I feel the most fun has been SEC575. Phone are not going anywhere in both corporate environments and personal. Learning how to break an Android app or doing packet captures through your iPhone can be very vital if you're just doing bug bounties or if you're trying to see if something is spying on you...OR if your companies app is broadcasting your creds in the clear.

    Far as the most relevant to my job, can't fail with GCFA regardless if you do DFIR or if you're looking at Red Teaming.
    Reply With Quote Quote  

  8. Member LWB250's Avatar
    Join Date
    Oct 2015
    Location
    Florida
    Posts
    50

    Certifications
    GCIH, GISP, GMON, A+, Security+, HP ExpertONE Accredited Platform Specialist – HP Desktops, Workstations and Notebooks
    #7
    I would concur on 504. I was lucky and got to do work study for mine that was taught by John Strand. John did a fantastic job and was very engaging, which is hard to do in a course with this level of material and the time it takes to teach it.

    This was the third SANS class I've done in person, and by the fourth or fifth day you can be really wiped out with brain overload. John did a great job keeping the conversation on point, providing real world examples of the material application, and staying engaged with the participants.

    I'm not diminishing the performance of my other instructors, just saying that John has been the best I've had so far, which made 504 my favorite.
    Reply With Quote Quote  

  9. Senior Member
    Join Date
    Jun 2011
    Posts
    101

    Certifications
    GCFA, GCFE, GCIA, GICSP, and some other junk.
    #8
    Resurrecting an older thread that came up while I was search for past posts about FOR578 and the GCTI.

    The most fun class I took was SEC503 partially due to the instructor Mike Poor. The best and most relevant class I have taken is FOR508. I did that one on demand so I missed out on some of the live experience but the subject material is the most relevant to what I was doing professionally at the time.
    Reply With Quote Quote  

  10. Senior Member MalwareMike's Avatar
    Join Date
    May 2018
    Location
    Rocky Mountains
    Posts
    101

    Certifications
    GSEC, GCIH, RHCSA, WCNA
    #9
    I've only taken SEC401 and SEC504 but I start SEC542 on Monday...and I'm hoping it will be my favorite course thus far.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks