@Steve Linithicum Kindly I disagree with you ,for successful labs in such high technolgy like cyber security it should be as the following:
1-Related to what is in real market like using solarwinds,Qradar,Nessus,....
2-Steps must be clear enough and close to what real security engineer do .
I hope next generation of CYSA+ avoids the bad design and dummy tools being tools used in the current version if Comptia is looking for getting higher share in training market.
I don't think that's a fair statement to make. As a CySA+ myself, I was deluged with the cornucopia of tools and utilities in Security Onion and Kali and still am when you add in PenTest+. The tools aren't out there to train you in the use of that tool, but are representative of the concepts that tool would have. I didn't need SolarWinds, Qualys, or Nessus to get the exposure I needed. In fact, the only vulnerability scanner that I really used was OpenVAS/Greenbone, which is free, and real world. I was able to run vulnerability scans of my network and understand the derivation of CVSS scores against a particular vulnerability. And I actually like Greenbone.
I downloaded Paessler and found it more trouble than it was worth. But I got to love Zabbix. SolarWinds kept bothering me with marketing garbage when I just snagged one tool, and after their compromise, I got a little wary of them. ZenMap got dropped from the default build of Kali, in favor of just using nmap. I think ntop is one of the most underrated tools out there - and it is FREE to education. We all have the tools we "like" the ones we don't.
I wish someone would write a good solid open source free SEIM. But I'm not holding my breath.
But it's not about the tools; it's about the concepts those tools represent. Once you get the concept down, use the tool you think will do the best job for the money you are willing to pay.
I would, however, challenge you on which tools you think are "bad design and dummy tools". Elaborate that further, please.
CompTIA has to strike a balance. It maintains a position of vendor neutrality, so it has to be careful about the kinds of tools are represented in its exams. Just yesterday, even, Cameron Dodd make the lament that much of the functions represented in Domain 2 of Data+ were more Microsoft-heavy, rather than going into how they might be in other data analysis tools or SQL Server.
A long time ago, VMWare required education institutions to license their software like every other company. They didn't care who you were, they just wanted you to license up. Notwithstanding they had the market share for virtualization (and still do), but educational institutions could not afford it, so they were either consigned to use VirtualBox/KVM (which no one uses in a heavy production situation), or maybe HyperV. Eventually, they allowed for some usage, which I am glad to see. But there were students and instructors during that time that would fault the school because "we didn't spend enough on real world tools".
Anyway, no tool is worthless if it teaches you the concepts that you need to know - and that's the point of what we're doing here, rather than training a professional on how to use SolarWinds or Nessus.
/r
