Hello,
Welcome to week two of doing my ECIH self-study training, I am calling it week two but really its 2 and 3.
The main thing I have learnt this week or so is that the course is nowhere near as easy as I thought it was going to be, this is a good thing though.
I have finished setting up the lab environment and am currently working trough the two lab exercises for module 1 with are these:-
Qualitative Risk Assessment Using PILAR Risk Management Tool
This lab demonstrates how to perform a Qualitative Risk Assessment using PILAR Risk Management Tool.
Quantitative Risk Assessment using PILAR Risk Management Tool
The objective of this lab is to introduce the concepts of incident response and handling. These tasks include the following:
- Qualitative risk assessment
- Quantitative risk assessment
Then I have to Analyze and document the results related to the lab exercises and get reading through module 2.
Setting up the lab environment was a lot of fun if truth be told, I haven’t used AlienVault OSSIM before so that’s pretty exciting and was a nice network refresher setting up the lab with each having static IP’s and creating FTP etc.
My machine did crash once but I had a whole heap of stuff running so not surprised as OSSIM does need a decent amount of resources so along with server, ubuntu and two windows 10 VM’s all running as well as browsers and stuff it was just too much understandably as there was no need for me to have all this open.
Looking forward to reading module 2 and tomorrow for this.
It was always expected to be a slow build up but I am actually pretty glad at that as you can never have too much grounding in the basics and seeing how an actual network albeit in a much smaller scale to a company is set out is great.
Regards
Alex
8 thoughts on “Week Two of EC-Council Certified Incident Handler (ECIH) Version 2 Self-Study Training.”