I joined a security mailing list some time ago, recently they got to talking about what the ‘best’ certification to get for security training is. A certification to be a professional hacker? Who knew there was such a thing? One of the most notable ones they mentioned was OFCP (Offensive Security Certification). I took a look at their website, there are a couple good demos on there and the price to get certified appears reasonable enough. Apparently passing the test is difficult with “90% of people failing the first time”, or so says one of the folks on the mailing list.
Check it out:
Here are a couple more sites they shared that look interesting:
Hacker High School
Something many people don’t seem to realize is once a person has physical access to a database the only thing seperating them from getting into it is a little knowledge. This is why web apps are much more easily secured than downloadable apps could ever be.
Such is the situation with excel spreadsheets. They use such laughably easy to break encryption that even the slowest computers can be into them in seconds. If you’ve ever forgotten your password to an excel spreadsheet check out the macro posted on McGimpsey’s website.
Here is a good comic that amusingly sums up why you shouldn’t re-use your password for different websites: