According to SANS, GIAC Systems and Network Auditors are expected to possess knowledge, skills and abilities to apply basic risk analysis techniques and to conduct technical audit of the essential information systems. Officially, the exam covers:
Audit Methodology and Risk Management
Auditing Concepts
Auditing Network Services and Critical Systems
Auditing Networking Devices
Auditing Unix Access and Permissions
Auditing Unix Services and System Information
Auditing Web Applications
Auditing Windows Access and Permissions
Auditing Windows Services and System Information
Vulnerability Assessment
Web Application Overview and Web Server Security
This ExamFOCUS book focuses on the more difficult topics that will likely make a difference in exam results. The book is NOT intended to guide you through every single official topic. You should therefore use this book together with other reference books for the best possible preparation outcome.