Some time ago, I was teaching a class on Security+ and we were having the Final Exam. We had two classes, day and night. The morning came and I slapped a piece of paper to the whiteboard that read:

Hey - so I posted the answer key on the server. But for security concerns, it will only be up there and available for the next hour. Please make sure you get it before the exam start.

I went back to my desk and sat down. Nothing further said. Just clickie-clickie on my computer as students' curiosities got the best of them. They came up and read the e-mail formatted note. They asked me about it. I said nothing. Then, I think they got the idea that they had to go looking on our local file server for it. So, in a scene that you could set to Yakety Sax, the students started scrambling around, looking on the server for a file that might be the answer key. They started searching through the student folders, opening various files and searching.

They couldn't find the file, but they did find one directory they couldn't access. The Day crew could not access the Night folder and vice versa.

Then one got the idea, "hey, what's the night student password". Day students logged on as night (passwords weren't particularly secure). So they got into the opposite class's folder, where they found a folder with a PDF and picture of the book cover. Upon trying to open the PDF and realizing it was locked down with a password, they scrambled trying to find it. It was then they looked at the pic:

"Dude, what was the name of that website that Rick used to hide stuff in images?"

So the students scrambled to find their notes on my discussion regarding steganography, which website I used in class (luckily, one of them wrote it down), and found the password to the PDF encoded in the book cover image. The classes had 60 minutes to recover the file, which turned out to be the exam key for the Final. Day got it in 58 minutes, night didn't get it.

But it was one of the better finals I've ever given - probably because they had something to gain by playing.

TL;dr - Used stego to hide a password to an encrypted PDF containing a final's answer key for an open book exam.

Do you have a similar story? Share below!

Cheers!

/r

So, we've all been hearing about the upcoming, new Sec+.

Me, I'm pretty excited about the new challenge, especially since I may end up teaching the class. Ssssoooo... are we sure there's no secret closed-beta people could try and get a seat on? I had a blast with the PenTest+, CySA+ and Linux+ beta exams; those were fun!

@Stephen Schneiter has indicated that there's no beta, since the new version "is just an update". But hey, if The Professor says that 601 has 250 new topics compared to 501, that still sounds like a lot of changes that need testing.

I am studying for this exam and hope to test in the next 60 days. What materials helped you all prepare? Are there any exam prep questions I can use to test my knowledge?

CompTIA Partner Summit is approaching fast! Hear from Todd Thibodeaux, President and CEO on how you can Learn, Advance, Connect and Succeed with CompTIA's Annual Partner Summit 2020. https://lnkd.in/e3MVj43

Always willing to accept free content as I prepare for the new CS0-002 exam:
Requires a Kendle Unlimited but you can cancel it before the end of two months at no cost.

As technology becomes more crucial to business operation, companies want to be sure they understand their IT budgets. CompTIA’s report on The Business Relevance of IT in the SMB Market found that the top three reasons for IT budget surprises are ongoing maintenance, required upgrades, and staff time required for operation. As technical candidates build skills using CompTIA A+ or CompTIA Network+, they should pay attention to how different topics tie together so that they can describe the total cost of building and maintaining systems.

Hello everyone,

I have a student with a visually impaired disability who is trying to get help from PearsonVue for some accommodations. He requested accommodations through PearsonVue two weeks before his exam date, but never head back from them. During his exam using OnVUE, he had difficulty reading content on his screen, but was not able to use the magnifying glass feature to help see the images. He was also instructed to keep his face away from the screen by the online proctor so because his entire face was not visible when he moved very close to see the images.

Does anyone know what accommodations are available for visually impaired test takers? Or does anyone have any suggested strategies to better see the images on the screen during the exam using the OnVUE software?

Thanks.

PLEASE READ!

Due to unforeseen circumstances we have had to reschedule the remaining three sessions for the CySA+ TTT. The remaining schedule is:

• Session 10 - Tuesday July 14, 2020
• Session 11 - Thursday July 16, 2020
• Session 12 - Tuesday July 21, 2020

Please update your calendars to reflect the new dates. The sessions have been updated in ON24 so you should receive webinar reminders for the new dates. I apologize for any inconvenience, however we needed to make this change.

Please feel free to contact me directly in you have any questions regarding the new schedule. [email protected]

Thank you,
Stephen

Wondering if anyone else has run into this issue when trying to create and run a course using the "new" CompTIA official hosted labs (really just the old rebranded Learn on Demand (LOD) labs).

I do not want to build out the lab environments locally and want to use a cloud provider; for a number of pragmatic reasons.

However; CompTIA and LOD have stated the following;

1. They make you (the instructor) PAY for lab access.
-- Charging instructors for access - when we are being an advocate for a vendor, one that brings paying students every term is simply misguided and wrongheaded.

2. Will only provide 30-day complimentary access to the labs
-- 30 days does no one any good.
-- Here is the real world… instructors need year-round access to content to build/revise courses.
-- AND.... after that, you have to pay.

Here is the real world as I see it - Instructors need year-round access to content to build/revise courses.
I like to use a certification vendor's "official resources" so I was happy when CompTIA stated they were "creating a new environment" but instead found that they simply rebranded the old LOD labs.

Due to this "policy", one is forced into to support other vendors; vendors that understand what instructors go thru ( and there are a lot of them).

It is just shocking that this is the official CompTIA stance, with the assumption being that its about money ( always about money). I assume they have to pay LOD for anyone's lab access, including the instructor...well if this is the case, perhaps someone at CompTIA should renegotiate this contract for those of us in the trenches providing a revenue stream.

Hello all,

Does anyone know if a Certificate of Attendance is provided when attending a Train-the-Trainer course?

Thanks.

Trevor C.

First a "thank you" to Stephen S. for providing access to CompTIA's learning content for the new CySA+ new exam (CS0-002). This access was granted to instructors participating in the ongoing Train-the-Trainer course relating to this certification. What I'm finding in going through this course is the high quality of content. That quality includes well-written learning lessons that are easy to navigate, and the periodic exercises that are designed to help determine if you are "getting it" in terms of understanding what's being taught.

In my new "retired" role (I retired from my full-time job with the California Community Colleges), I'm focused on updating my knowledge, skills, and abilities (KSAs), that relate to cybersecurity with hopes that it will improve the quality of my instruction. With CompTIA providing instructors with "free" access to these resources, I'd encourage all of us to take advantage of this opportunity.

Steve

UPDATED: Awesome Remote Instructor Opportunity: Looking for A+ and Network + instructors to work remotely full time and part time needed. Our classes are in person and support the hard of hearing community. Instructors do not need to know sign language but that would of course be a plus. We have multiple translators in the classroom. This opportunity is available to the right candidate regardless of their location. This is H1-B visa proof. call Brian 678.350.6810

If I want to teach the CompTIA CTT+ , are there certain requirements that have to be met?

I am planning to have a panelist session in teacher training I am designing. I would like to have an IT High School teacher be part of it. Someone who did not have an IT background when they started.

Let me know if you are interested or know someone and I can send out more detail. The session will be on July 8, 10 am - 11:30 am central time. Feel free to email me at [email protected]

Thank you,

Tazneen

Hi CIN,

Has anyone of you tried delivering an A+ combo online instructor-led training (core 1 & 2) using the certmaster learn and labs platform in 10 days for just 3-4 hours a day?

Did you use a presentation planner as a timing-guide for the delivery? (similar to the one you get from logical choice).

Your inputs are greatly appreciated.

Thanks!

Ivan Jude

As many of you know, I've been with the California Community College System for decades and will be retiring at the end of the month. Retirees have a 180 day period where they cannot work for our public schools (including colleges and universities). I've been asked to share the information and contact information with the group as there is a need for contract trainers. The information is below. This could be an opportunity for those interested in teaching. Me, well for the 180 days I think I'll take up getting addicted to eSports.

Contact information: Eldon Davidson - email [email protected]

His request:
I am working away on the CompTIA course offerings and establishing programs with the Army. My Dean, Jose Anaya, should be touching base with you soon and perhaps we can explore if there is a way for you to teach during your retirement waiting period. Until then, do you have an instructor or two that can teach the CompTIA courses at night and on the weekends?

Hi - Im very new to CompTIA and struggling a bit to get my head around requirements. Im hoping to deliver A+ as part of a qualification for college students in September. Do I need to be qualified as a CompTIA instructor to do this? Is the Cisco IT Essentials one way of delivering the course prior to the 1001 and 1002 exams? If I do need training (Cisco Instructor for IT Essentials) how do I find out who is running a course - I have gone around in circles talking to Cisco themselves, they just keep sending me links to ITC that dont have any relevant courses. Any help would be really appreciated.

Hello everyone,

We have an associated technical school that offers a lot of training in networking and security. How would we be able to ensure our students are able to get CEU credits for those classes? I'm assuming there's some sort of review process that we would have to work through. If anyone knows who we should talk to I would love to know.

Thanks!

#!/usr/bin/env python
import sys
from socket import *
from datetime import datetime

START_PORT = 1
END_PORT = 1025

target = raw_input(">>> Enter target's IP address: ")

start_time = datetime.now().replace(microsecond=0)
print "\nScan started at %s \n" % (start_time)

def scan_target(target, port):
try:
return_code = 1

s = socket(AF_INET, SOCK_STREAM)

err_code = s.connect_ex((target, port))

if err_code == 0:
return_code = err_code

s.close()

except:
print "Error: Could not establish connection!"
sys.exit(0)

return return_code

for port in range(START_PORT, END_PORT):
return_code = scan_target(target, port)

if return_code == 0:
print "*** Port %d: OPEN" % (port)

end_time = datetime.now().replace(microsecond=0)
duration = end_time - start_time
print "\nScan finished in %s" % (duration)

Cheat sheet related to CySA+ and it can used in general as well.

Hello everyone! From your perspective, what is the value of the A+ certification in the field, from a Hiring Manager's eyes and to the candidate?

I am making a video about the value of the A+ certification, as I feel it is a great certification to have.

Thank you!

CSLounge

Hi

I would like to deliver or conduct COMPTIA training, what are the requirements of becoming a trainer of COMPTIA.

I am preparing to teach the Pentest+ course, and I just wanted to see if anyone has taught the course already and what material did you use or can share.

I recently took the CASP+ at the end of February and I am curious as to what others found challenging as far as the domain objectives. Personally I thought the governance part would have kicked my butt though the exam was not that bad.

Getting used to learning online can be daunting for both instructors and students. Zeshan Sattar, CompTIA director for learning skills and certifications, shared some words of advice around how to make online classes engaging, and suggestions for students to resist distractions. Zeshan participated in a LinkedIn Live session with CompTIA's Kelly Stone.

You can catch the session here: https://www.linkedin.com/feed/update/urn:li:activity:6668525798007410689