90% of OPSEC is "for christ's sake, encrypt it!" and 10% of OPSEC is "for christ's sake, don't encrypt it". For this reason, it's a hard discipline to learn and an even harder one to teach.
INFILTRATE 2011's Unethical Hacking class is our best attempt at it, and it ends up being, as you might expect, very different from a penetration testing class. Penetration testing is about methodology, wheras hacking is about learning to do the unexpected on both the tactical and strategic levels. But you still have to learn the basics. A constant question we get, and ask ourselves internally, is "Why does Unethical Hacking start with 3 days of buffer overflow training?" I don't actually know the answer - but I will say that learning this way sets people on a path that is very different from any normal penetration testing class, and there's more people in the INFILTRATE 2011 Unethical Hacking class now than the Master Class (which is not what I expected at all). Perhaps the reason is this: Methodology goes bad like fruit. But if you learn a Discipline, then it is essentially with you forever. -dave _______________________________________________ Dailydave mailing list [email protected] https://lists.immunityinc.com/mailman/listinfo/dailydave
