My cybersecurity journey has been a fascinating evolution, spanning over two decades of continuous learning and professional growth. Back in 2003, I first obtained my CompTIA Security+ certification, which was a significant milestone in my career. Recently, I revisited this foundational certification by successfully passing the latest Security+ (SY0-701) exam, demonstrating the importance of staying current in our rapidly changing cybersecurity landscape.

I will complete Pen+, CySA+ and CASP this year. I wrote an ARP Poisonging detection tool in Python and was going to share it, but when testing there were a few errors so I will test it further.

Hey there it is nice to meet everyone, I was recently accepted into CIN and I don't really know where to go from here. Does anyone have any tips or guidance to getting started? I do apologize if this is vague, But I do hope I can get some guidance.

Subnetting can feel overwhelming for students. What’s your secret to making it simpler and even enjoyable? Any favorite methods, tools, or analogies to share?

CertMaster Lab for N10-009 Network+ , anyone have recording , it is not easy due to lab instuction not clear

In the past, I've found that the certification exams do a pretty good job of meeting the outcomes stated at the top of the exam guide regardless of the material that is presented for the different learning objectives...ie that there is often a difference of interpretations between what gets trained and how it gets tested.

This particular exam and the course material seems to leave a lot of whitespace within the words used to define the outcomes and objectives, and the scope of the objectives (given the number of sub-topics), that a test developer can fill in ... (outcomes and a couple of objectives noted at the bottom of the post)

For example, in Pentest+ 003 what is the definition of phases, ttp's, and laws referenced in the outcomes?
a) phases that the outcomes refer to (note the domains and objectives don't follow any published pentest methodology and seem to conflate phases with tactics in mitre attack)
b) which list of tactics, techniques and procedures are we aligning the attacks, tools and phases with...(note Mitre attack is the only ttp listed but it is not used consistently in the objectives)
c) what laws and compliance/control frameworks should we be aligning the attacks with (note, I don't really see this level of detail reflected in the course material...the objectives just say security and privacy laws in 1.1 and the frameworks in objective 1.3 don't identify any control frameworks beyond the owasp masvs)

...and given the outcomes, 80+ tools and 100+ "attacks", and just 2 of the objectives (noted below), I'm led to believe that the students will need to:
1. Associate each tool with all of the relevant phases, tactics and techniques...note I don't know what the authoritative list/lists of these are
2. Be able to script the commands and switch options for every tool ... and associate those with specific attacks
3. Know the appropriate mitigations for each attack and probable root causes for each control's failure
4. Be able to identify an attack with the control or law you intend to test

so, am I overthinking what my students will need to be capable of or where the test writers may take the exam?

---------exam outcomes and objectives -----------

The exam guide identifies 4 outcomes for Pentest+ 003:
• Plan, scope, and perform information gathering as part of a penetration test.
• Perform attacks that are aligned to and fulfill legal and compliance requirements.
• Perform each phase of a penetration test using and modifying appropriate tools and use the appropriate tactics, techniques, and procedures.
• Analyze the results of each phase of a penetration test to develop a written report, effectively communicate findings to stakeholders and provide practical recommendations.

That said, the 26 objectives (including 15 apply and 3 analyze level of learning) list over 80 pentest tools/platforms/technologies and over 100 attacks/tactics/techniques. Including these two doozies
- Given a scenario, use scripting to automate attacks.
- Given a scenario, analyze the findings and recommend the appropriate remediation within a report.

I'm having some difficulty on delivering the course for the new Comptia Network + certification in a week. The training materials contains a Course Paging Guide for a 5 day course but the total estimated instructional time there is 5942 minutes which means aproximately 99 hours, too much for a week.

Do you have any materials with recommendations about the recommended timing for the course so I can deliver the knowledge in a week (8 hours per day)? For example, the old course had a document called Presentation Planner for Network+ which you could have used for schedulling the time.

A Chinese artificial intelligence company called DeepSeek has released an AI app with development costs estimated at only $6 million. OpenAI, Google, and other major US companies are on track to invest roughly $1 trillion over the coming years. The news has caused NVIDIA to lose 15% of its stock value in one day.

The exceptionally low development cost, and the fact that it runs on older processors, have rocked the AI market.

https://www.cbsnews.com/news/what-is-deepseek-ai-china-stock-nvidia-nvda-asml/

I cannot find the Tech + TTT (or even the ITF TTT) on the CIN website anymore. I know it used to be there, I just can't find it.

Good Day Everyone!

Is there a master solution set for the Live Labs for the DataX class? For example, a ZIP file that contains working examples of all of the Jupyter Notebooks?

Any other insights are appreciated!

Thank you,
Ben

Good day, everyone

actively looking for a instructor to take the project+ training in this Q1

its a virtual training in CET timezone. Dates hasn't been confirmed yet

Since there is an announcement...


PRE-DRAFT CompTIA Linux+XK0-006 Exam Objectives (pdf) (922 KB)


So you can start preparing already for that one in 2025 or 26?

Michael

Hi, can someone please help me. I am an authorized delivery partner and my account manager who i have been communicating with suddenly disappeared. No answers to emails or calls. Comptia help have also been unresponsive. Does anyone know who i can contact? I will really appreciate some clues.

Hi everyone,

Just wondering is there some kind of road map/calendar for the Train the Trainer series. Curious to see what is upcoming!

Kind regards, Patrick.

We are trying to deliver multiple courses (A+, Security +, Network+, Cloud+ etc.), I can buy the student material, but do I ahve to create the presentations my self? Does Comptia provides any power point presentations to the instructors?

Thanks for your guidance

[Please ignore this message]Hi, can someone please help me. I am an authorized delivery partner and my account manager who i have been communicating with suddenly disappeared. No answers to emails or calls. Comptia help have also been unresponsive. Does anyone know who i can contact? I will really appreciate some clues.

A recent Facebook decision to block posts and groups related to Linux, categorizing them as "cybersecurity threats," and even claiming that Linux is malware is a big concern within the tech community. DistroWatch, has reported being restricted since January 19, with users experiencing account suspensions for disseminating Linux-related content. As instructors and IT professionals, many of us rely on social media platforms like Facebook to share knowledge, discuss open-source tools, and educate others about Linux.
How will this impact the tech community and cybersecurity education?

Hey there, fellow Instructors. A couple of notes if you are teaching Network+ and Security+. I noted that some topics are covered in both, but the coverage between the objectives, the course content, and the possible exam questions may differ.

(1) How DNS works and how DNS is secured. Network+ covers DNS over UDP, DNS over TCP, DNS over HTTP (DoH), and DNS over TLS (DoT). DoT and DoH are included in the latest Network+ objectives (but not in the Security+ objectives. I cover these in both courses. I point out the difference in the objectives. I also challenge (quiz) students with questions that differentiate these protocols. I also noted differences in how the topics were covered in the latest Mike Chapple and Mike Meyers Study Guides.

(2) Disaster Recovery (DR) is covered in Net+ and Sec+. Net+ objectives call out RPO, RTO, MTBF, and MTTR. Sec+ objectives call out RPO, RTO, MTD, and MTBF (no MTTR). I had students ask me questions about this after taking both exams. I recently took the Net+ exam and saw this topic. I'd advise covering these terms in both courses with some reinforcement (ask questions or include them in the quiz).

My advice to students is that understanding the details of a technology or process helps them perform better on exams. These are two topics that I explore in greater depth to aid students in developing that understanding.

Is a date for TTT series on the horizon for AI Essentials?

Hello

Will there be an update to the 220-1101 and 220-1102 content and exam coming in 2025?


Regards
Chintan Patel
Johannesburg, South Africa

Good evening to the CIN community.

Bit of an odd one, I think when cleaning up some e-mails, the one containing my voucher got deleted, does anyone know of a way to recover the e-mail? Hopefully, This is the last time for me, but not the first time it has happened as a collective.

Hello

Will there be an update to the PK0-005 content and exam in 2025?


Regards
Chintan Patel
Johannesburg, South Africa

When is the CIN TTT Series: PenTest+ PT0-003 starting?

Instructors,
One of my students asked me yesterday via chat to explain how TikTok could be filtered out of US Internet traffic. As we all know, TikTok is an application that runs on devices and different operating systems. That application communicates with some server or servers to retrieve and display content in the application. Given yesterday's events, I explained that the folks at TikTok had shut down the service on their own. Then, after reading various messages on other forums this morning, the folks at TikTok decided to restore service. The chat with my student continued, and we discussed the what-if situation in which you were a network operator and asked to block TikTok traffic to devices attached to your network. What would you do?

Happy Friday!

Rowan College at Burlington County currently offers CompTIA courses to the community.

We would like a local instructor who could come on campus for A+ and other courses as needed.

The below graph is how we have run courses in the past but the schedule is flexible.



If you are interested in any of the options below, please use this link to apply as an instructor:

https://www.schooljobs.com/careers/rcbcedu/jobs/3971269/lecturer-continuing-education



Questions can be directed to my email [email protected]

Thank you!