I used to
think that braindumps were web-site where test takers pooled
their knowledge. Especially where those who have taken the tests would
enter questions and answers that they remembered.
I never considered
those Q&A cert-preps to be braindumps. Although, I
suspected that the Q&A from the cert-preps were taken from braindump
sites.
Maybe I was
wrong about everything. Maybe things were like that at one
time, but no more.
The so-called
braindump web-sites are usually fronts for the cert-prep
sellers. They may offer a few sample Q&As, but only to sell their
cert-preps. I
think these cert-preps are generally referred to as braindumps.
I don't know
where the cert-preps sellers get their Q&A, but I have
read that they come from nations outside the USA. Nations that do
respect USA copyright, and where people with access to the exams are
easily bribed. The companies that sell these braindump cert-preps are
also located outside the USA.
Some say
the braindumps are very accurate, other say the braindumps
are not very accurate at all. Usually, not always, those who say the
braindumps are not very accurate, have not used the braindumps. Rather
they conclude the braindumps are not very accurate because they think
the braindumps are from test takers relying on memories of test
questions.
Many people
are strenuously opposed to braindumps. They claim the
braindumps devalue the certs. They also claim that those who pass the
cert exams by using braindumps, are not really qualified. Those
opposed may be right on both of those issues.
Others say
that braindumps may be used as a legitimate testing tool.
To be fair, not too many people say they passed the exam by only using
the braindumps. Most, who use the braindumps, also claimed they
legitimately studied also.
My guess
is that those who sell the braindumps all rip-off each other.
I expect they download their competitors exams, and compare it to
their own exams, making sure that things are just different enough.
I wonder
if the proliferation of braindumps will cause this whole
cert-mania fad to collapse?
Maybe the
SANS GIAC is the way to go. Nobody does braindumps of their
stuff - it wouldn't make sense to do so, since much of cert is
obtained through practical assignments.
Post a follow-up to this message
From:
nebula
> Maybe
the SANS GIAC is the way to go. Nobody does braindumps of their
> stuff - it wouldn't make sense to do so, since much of cert is
> obtained through practical assignments.
Not only that, I think people who take these exams are more willing to
keep
the q and a's to themselves. I for one took the GCFW and soon will go
for
GCIH and GCIA. And you bet I won't share the q and a's. It is hard work,
expensive courses and as far as I can tell you can't even find a PDF of
a
SANS course on the Net. Well, I never found one anyway.
I think those
who are GIAC certified are proud of what they've done and they
feel that others should do it themselvers. Besides, the exams REQUIRE
you to
pass the practical first. Only then you can take the two (or three, it
depends) theory exams which are MPC. And when taking those exams, they
are
open book. So, if you do not know the answer, you can look it up (just
as
you would in real life, I mean, I really do not know all port number,
tcpdump parameters by heart).
From:
walterbyrd
I agree with everything you say about the GIAC. However, oddly enough,
the GIAC is not as well regarded as some other certs, particularly the
CISSP.
Personally,
I think SANS GIAC has much better program. If I were going
to hire somebody, I would hire a GIAC certifed guy before a CISSP.
>
> > Maybe the SANS GIAC is the way to go. Nobody does braindumps
of their
> > stuff - it wouldn't make sense to do so, since much of cert
is
> > obtained through practical assignments.
> Not only that, I think people who take these exams are more willing
to keep
> the q and a's to themselves. I for one took the GCFW and soon will
go for
> GCIH and GCIA. And you bet I won't share the q and a's. It is hard
work,
> expensive courses and as far as I can tell you can't even find a
PDF of a
> SANS course on the Net. Well, I never found one anyway.
>
> I think those who are GIAC certified are proud of what they've done
and they
> feel that others should do it themselvers. Besides, the exams REQUIRE
you to
> pass the practical first. Only then you can take the two (or three,
it
> depends) theory exams which are MPC. And when taking those exams,
they are
> open book. So, if you do not know the answer, you can look it up
(just as
> you would in real life, I mean, I really do not know all port number,
> tcpdump parameters by heart).
From: nebula
> I agree with everything you say about the GIAC. However, oddly enough,
> the GIAC is not as well regarded as some other certs, particularly
the
> CISSP.
True. I do not know why. I do know that CISSP is the helicopter view,
which
IS so needed, but they often (not always!) lack the in-depth knowledge
needed at times (I do to : )). CISSP is management and GIAC is the nitty
gritty fun stuff ;-) I mean, I get to play with all these nice firewalls,
ids-es, routers, firewalls... Where the CISSP dude/dudette is stuck with
management and process issues (which I must admit, ARE extremely important
to have).
> Personally,
I think SANS GIAC has much better program. If I were going
> to hire somebody, I would hire a GIAC certifed guy before a CISSP.
I think it depends what you need. Do you need some one who knows his stuff
in a particular field, then I feel GIAC is the way to go. Do you need
someone who outlines security management or define a security policy for
your corp. then the CISSP would be the better choice. I for one want to
take
the five intermediate certs by GIAC, so I can attempt the GSE exam...
And I
want to have CCNP as well.. Once done, CISSP will be the next step. ANd
then
I think a Masters in Information Security would be a good idea (though
my
math sucks big time; a bummer for crypto....).
nebula
source:
alt.certification
Related Topics
ABCs of Braindumps
Question on BrainDumps
Braindumps and cheating
| 