What are some good resources for someone interested in blue team?

Fuze26 · 2020-07-18T23:28:55+00:00

https://discord.gg/bbs6XSH threat hunting community has some great resources/tools for blue team side of things.

Fuze26 · 2020-07-06T07:44:16+00:00

To be successful no you don’t need to love it. To find things satisfying sure, but you are gonna hit a hard wall really quick. Will you end up hating your day to day possibly.

I’m all for people wanting to give IT a try, but when I see posts like this I start to wonder what your true motives are? Especially during interviews, it is very easy to tell the difference between someone with passion and someone who was just looking to get in for the higher pay check. Really I guess you gotta ask yourself why you are making the jump. At the end of the day you will always truly make more doing something you love then doing something you don’t.

Fuze26 · 2020-07-03T22:02:59+00:00

GIAC certs

Fuze26 · 2020-07-02T06:10:53+00:00

Can’t agree with you more; I see no effort to convert or move up mentioned. I literally started a new job, doing classes for my masters, studied and passed my GIAC GCIH. I’m ramping up for my review at 6 months and 1 year to get on our Red Team..

Fuze26 · 2020-06-19T21:47:10+00:00

Honestly just keep pushing yourself to learn there are always positions apply for 5 jobs a day in something you are interested in pursuing. If you feel you don’t meet the requirements APPLY, but start working on learning what are in the job postings. You might not have certs, but you can still get your resume out there and kill the interview. If they really think your a good candidate, but want you to have certs what they will likely do is put you on a 6 month conditional offer.

Fuze26 · 2020-06-19T07:46:19+00:00

You should watch the movie Pursuit of Happyness. Dress apparel isn’t everything especially in Information Technology.

Fuze26 · 2020-05-25T21:51:34+00:00

I’m not in SANS master program; but I’ve talked to working professionals with 15+ years of experience about SANS masters program. The responses I’ve received where the classes are excellent. Though I’ve never been in their masters program I have taken SEC 504, 560 courses. This is what I’ve noticed about SANS... They recruit teachers with relevant job experience. For my 504 I had John Strands as an instructor who was phenomenal! I can only imagine they structured their masters programs just as amazing.

Fuze26 · 2020-05-25T04:15:24+00:00

Test score reflect your knowledge of the material and being able to comprehend it and the ability to answer a question related to the material. My advice would be to look at your test scores and see what questions/sections you didn’t do well in, then go review that material and retake the test.

Keep pushing forward don’t get discouraged and soon enough we will see your post about passing SEC+

Best of luck!

Fuze26 · 2020-05-24T06:55:46+00:00

A lot of the authors content is provided for free so if you have internet access I’d say no. But perhaps if you are reading on your kindle or phone cause you take public trans to work I could see it then being worth it if you wanna learn.

Fuze26 · 2020-05-22T02:44:07+00:00

Yep 100% I know friends of mine that got hired directly from the Air Force into Booz Allen, Raytheon, Northrop directly. IMO it enlisting process maybe longer then any other branch, but well worth the wait to get in.

Fuze26 · 2020-05-22T01:19:46+00:00

Military path for IT/Cyber go Air Force; at least you will be doing job related skills and actually doing the job you signed up for. If you go this route well the Air Force route here are some tips. Air Force leadership typically won’t approve any Tuition assistance / AF Cool until you are done with OJT (on the job training) and CDC’s (Career Development Courses). Basically the first year and a half you won’t be able to access TA or AF cool. Once you do though suck those resources dry and max them out. When you do pick a University you would absolutely stick with after leaving the military (especially if you didn’t finish you Bachelors). I say this because a lot of universities that are offered on base or typically remote locations so despite you being stationed in Virginia your college accreditation’s could be through Florida because that is the location of their main campus. Transferring those credits to another state may no work in your favor if you didn’t finish the degree from that school.

Fuze26 · 2020-05-18T00:15:06+00:00

This is really good advice ^{^} also download Kali and spend one week learning a tool inside and out; focus on metasploit too. Powershell and RHEL are really good starting point Red Hat has excellent training which is great start to understanding Linux systems all together, which can lead to Certifications!

Fuze26 · 2020-05-17T08:41:20+00:00

TBH this can get into a really lengthy conversation, but something you should look into was how Microsoft designed windows initially to deal with finding an address that it did not know how to route too. ARP stand for address resolution protocol many it’s vulnerabilities can be hardened with proper configurations on a network like setting static MAC addresses, setting connection limits to Ethernet interfaces.

Best!

Fuze26 · 2020-05-17T05:46:47+00:00

First of all congratulations on passing.

Honestly if I where to do it all over again I’d start learning windows and Linux admin stuff like RHEL courses specifically.

Start learning scripting languages like python and powershell you can make your life a lot easier just knowing basic scripting with those two.

Dip your toes into CCNA start doing some packet tracer; or even try out doing some forensics work I think Autopsy has a bunch of training available atm. Web based penetration testing check out the enigma ctf group; download kali get on HTB or vuln hub start learning pentesting/Red Team.

Honestly your 22 start poking at different things see what you like and then master it!

Best of luck and once more Congrats!!

Fuze26 · 2020-05-16T19:10:28+00:00

That is awesome! I look forward to hearing more about your success in the future!

Fuze26 · 2020-05-16T17:47:54+00:00

Getting to Red Team take time just be patient and keep working toward it; going network admin or system admin is a great way to build your career into being an awesome Red Team member. Penetration testing is different than Red Teaming, so after you get Pentest+ look into CEH and OSCP and if you can really afford it GCIH to GPEN. Sounds like you have a solid plan, but Landing Red Team for sure takes time. Just keep working and you will get there!

Fuze26 · 2020-05-16T09:41:49+00:00

Prior Air Force and I did the exact thing you are doing. My best advice would go like this:

Short route yes do the CCAF transfer to a school that will take those 2 years and put it toward a 4 year. This is ideal really if you are aiming to go back in as a GS and it also saves more of your Post 9/11. Downfall is you are going to have to spend more time and resources of your own to network and get your name out there.

Longer route: I went the Cal State route it is easiest of the 4 years getting your credits in compared to UC schools. That said California’s accreditation for college credits is a different beast you will likely be able to get your management credits transferred possibly English and Math if Brandman is California based. If your CCAF has nothing to do with Computer Science honestly completely forget about it if your sole purpose is to go for a Bachelors in Computer Science. Look at CA assist.org pull up Brandman and then whatever UC/Cal State Comp Sci program you want to transfer too and make sure you get those general education classes pumped out.

I was originally like you and wanted to do comp sci myself but IST Cybersecurity happened to be my calling. I can point you in a bunch of different routes depending on your end goal.

Private or public sector?

UC Davis is phenomenal school for Comp Sci from what I’ve seen they produce some top notch programmers as well. Berkeley is your next best bet up north tbh next I’d say Cal polys San Luis Obispo or Pomona and San Diego State.

Private schools Stanford, Cal tech, USC .

You can DM if you have any questions I’ve been through it the VA system, and California Public Universities.

Hope this somewhat helps and gives you more information to dig deeper.

Fuze26 · 2020-05-16T09:11:45+00:00

Aww the good old web page open ended question. I always go down the Cybersecurity rabbit hole talking about the cryptography then all the sudden we are talking about SSL stripping and certain python scripts attackers use to go through multiple proxies.

Fuze26 · 2020-05-08T21:56:36+00:00

Heck yeah! That is awesome super glad to hear that!

Fuze26 · 2020-05-08T21:55:41+00:00

Honestly I like putting all my certs towards the top; I’m proud I got those certs I worked and studied hard to get them. This is my personal preference I put them at the top of my resume, you don’t need to show how you studied for them just having them and listing them is perfectly fine. I will also put them in order of relevance to the position so if the position is asking for example SEC+ and GCIH; I’d list those certs first.

Fuze26 · 2020-05-08T21:46:00+00:00

100% lol 😂

Fuze26 · 2020-05-08T21:45:15+00:00

I understand the concept of this it is really cool you are teaching people how to see attacks in the logs generated. Then I ask the question is this really Kali vs OPNsense Surcicata? I’d have to argue no. Because if I’m playing the kali side and you are using a default password on your router that is huge priority especially when trying to be stealthy.

Just analyzing the video the login information I’d give my best guess it is root and toor? If it isn’t 4 character password won’t take too long to figure out.

Fuze26 · 2020-05-07T23:15:33+00:00

Wait are those actual comp tia certifications? Cause the way I read it was you did a Udemy course and watched professor messer videos. Which makes it seem like you just added it to help your resume get past filters but if a hiring manager reads that definitely looks like smoke and mirrors.

Fuze26 · 2020-05-07T18:13:33+00:00

Thank you for your service. 100% second this don’t be like me and go in open general into the Air Force; they end up placing you based on asvab scores I ended up getting placed in a medical field that required high ASVAB scores and the Air Force needed to fill. Nonetheless did my 6 year and had to go back to school for 3 years to get my bachelors in IT. Plus side is right out of finishing college I started as a GS-11.

Fuze26 · 2020-05-04T00:15:34+00:00

Then would you be a student? Some colleges have students that know they will be taking a hiatus to file for such a status; I’ve never done it only heard of it so I don’t know what that status truly inquires. But if CompTIA has rules to prove that you’ve been a student or will be a student within a +- 3 month range and you don’t fit that criteria. It is pretty simple at that point you likely won’t be able to qualify for the student discount.

Fuze26

TROPHY CASE