GCIH - using braindump questions to test my knowledge. Good or bad?

I just passed the GCIH last week with a 90%. As others have said, a GOOD index and general familiarity with where everything is located in the books is what really matters.

Index should include the term, book number, page number, and then the definition/general overview of said term. Also, I made a separate page that just listed the each section name and the book/page it started on...Like a table of contents but for all the books on one page. I used it quite a bit when I couldn't find the term/info in my index.

Writing the index is a great study aid as well...I've noticed this for classes in the past too...If I re-read chapters and take notes, or re-write notes from lectures, I retained the info more easily.

Word of advice: Be very familiar with the various tools mentioned in the books/class. That really caught me up. Not just with what the tool is/does, but HOW it does it on a technical level. When you run an nmap scan with certain flags/options( -sS, -sV, etc), what is it actually doing during that scan?

/r/AskNetsec Thread