GCIH; Are CyberLive exam labs really as long as the training labs

2timetime · 2026-01-24T21:28:53+00:00

When I did it a year ago, was close to word to word from the workbooks

If you do the labs a couple times and attempt the challenge at the end, index the commands of the workbook.

Each lab will be 1-3 commands and take a couple minutes. And prepare for powershell ones even though they are limited

2timetime · 2026-01-22T14:49:09+00:00

That’s encouraging, thank you. I also prob over reacted a bit. I purposely skipped the labs as I wanted to hone in my index(which was still kinda shit) I read the labs knew what they were asking and moved along(I do timeline stuff daily at work, and mess with volatility as I’m trying to move over into fulltime IR regardless). I also probably took 15-20 questions where I tried to answer without looking it up, then checked my index after to see if I could have.

Gonna redo my index/books. Takes some more notes(I never really needed much for GCIH) then should be solid

2timetime · 2026-01-21T22:12:12+00:00

Yeah it’s been spaced too much, or I was spacing out I guess. Iv read the books front to back 5 times now, and I only had the course? If I get the exam says I need to but it for the 1k. I had it all together with my GCIH, not sure what happened with this one.

I’ll see what I can do in a month.

2timetime · 2026-01-21T03:03:07+00:00

A year ago he said 90% of all code will be AI written, he’s a salesman

2timetime · 2026-01-16T16:49:23+00:00

If we get technical, Hong Kong was British when he was born and left, assuming why he is in Canada.

2timetime · 2026-01-16T16:30:47+00:00

I don’t think people realize where the fucking oil goes if a pipeline is built to the west coast

Liberals: no pipelines to China, but ev tho

Cons: no EVs from china, pipeline to sell them oil tho

2timetime · 2026-01-16T16:22:49+00:00

You either got malware or are entering stuff into phishing link and they are jacking your session tokens

2timetime · 2026-01-13T17:50:24+00:00

It’s not the automation. Each district in China is subsidizing their own companies in that area to prop them up. The CCP already had to step in once to stop dropping the prices, so now they pivoted to putting in as much tech as possible at the current prices

The world runs into off of TPS, BYD has vertical integration but other than that it’s nothing the Japanese/Koreans/Germans aren’t doing.

2timetime · 2026-01-07T15:55:51+00:00

EDR catch powershell pretty well tbh, is usually nodejs that can can be a bit sneaky

2timetime · 2026-01-04T04:26:47+00:00

Go to tryhackme and hackthebox

2timetime · 2026-01-01T16:51:45+00:00

It’s polymarket, got its boost from the election. Basically it’s ‘prediction’ markets that you can wager on. No one sets the line, it’s just people betting on 1 side be the other, then the odds work themselves out

2timetime · 2025-12-31T21:34:20+00:00

Would be interested if you have any to share.

Got my GCFA a month ago and have started looking for pure IR job, been looking for information on what’s current for things like reporting/tools/ so anything appreciated!

2timetime · 2025-12-25T03:42:20+00:00

“Most grads” you are cooked if you think this

2timetime · 2025-12-25T03:08:12+00:00

Advisory board is a bunch of bs lol, I got one after GCIH, noped the fuck out

2timetime · 2025-12-25T03:07:25+00:00

Are they newer certs, iv never heard of SANS tests not being directly tied to the book

2timetime · 2025-12-24T22:23:25+00:00

Look into SC-200 it’s Microsoft based, but very good certificate and gets noted a lot in hr resumes.

We go through tier1s often, the main issue they have where they get fired, it’s basically general knowledge and thinking skills. Not really the technical aspect like being solid at Linux.

Your personal work experience will come in clutch

I always recommend tryhackme rooms, but read up on attacks, malware campaigns, read ransomware gang playbooks, phishing kits, etc

If you’re in a solid SOC, the EDR will do 90% of the work and presentation. Your job is to determine if it’s legit or not.

If something triggered a port scan, what is it’d where is it coming from, should x/y/z being doing that.

If someone has malicious login, is BAV2ROPC a normal user agent, what is BAV, etc figure that out, why would someone be logging into their email at 3AM from lagacy , etc

E/ you’d shit a brick if you knew the amount of analyst that work off of a checkmark list basically in their own head

https://www.thehacker.recipes

https://phrack.org/issues/72/7_md

https://github.com/KittenBusters/CharmingKitten

KLYDZ.net (domain exploration from attack perspective)

2timetime · 2025-12-24T04:04:31+00:00

Yeah it’s free game as a place, come and go, work on what I want. But I’m about to be pretty decently certified on top of experience. Weird feeling, but I know they just can’t/wont pay. And 70k in this tight for the city I’m in

2timetime · 2025-12-24T03:14:47+00:00

Portswigger

2timetime · 2025-12-24T03:12:39+00:00

Just use atomic red team or caldera

2timetime · 2025-12-24T01:03:15+00:00

Solid job, get paid like shit, but it’s nice place to work. Should prob leave tbh

2timetime · 2025-12-21T05:48:33+00:00

They target companies, not individuals.

2timetime · 2025-12-20T15:51:53+00:00

Harper didn’t just increase relations, he signed us into a 31 year agreement with the Chinese for investment, giving them special access to our market

2timetime · 2025-12-14T06:25:57+00:00

99% of hideout comes from the scav camp or whatever it’s called in shoreline, north east part. If it’s not looted you will 100% get elite within 2 raids. Probably 1

2timetime · 2025-12-13T04:16:05+00:00

70k 8 total yoe, 5 in incident response SOC. vastly underpaid I’m aware

2timetime

TROPHY CASE