Network Security: Detailed info on RE: nessus to PCI

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Pen-Test

[Top] [All Lists]

RE: nessus to PCI

from [cdewitt] Network Security

[Permanent Link]

Subject:	RE: nessus to PCI
Date:	Wed, 22 Jun 2005 15:50:07 -0500

IMHO, Firms are certified through MC/Visa, not software.  Firms that are
certified to perform PCI assessments use Nessus all the time.  It's not
about the software - it's about the analysis.

cd...

-----Original Message-----
From: Mr Wizard [mailto:security.research.2005@gmail.com] 
Sent: Wednesday, June 22, 2005 12:55 PM
To: pen-test@securityfocus.com
Subject: Re: nessus to PCI

Unless you can get the Nessus Open Source Vulnerability Scanner
project team to certify Nessus with the Visa & MasterCard PCI program,
I would not advise using this tool for client engagements.

Mr. Wizard.

On 6/22/05, Vic N <vic778@hotmail.com> wrote:

Can you be more specific?  Is this PCI 1.0?  And are you talking about

specific section like section 1 or other sections?

Has anyone had any luck mapping nessus results to the Payment Card

Industry

(PCI) Data Security standard?



-- 
I know because I must know...

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
nessus to PCI, ctodude nessus to PCI, Vic N Re: nessus to PCI, Mr Wizard Re: nessus to PCI, Renaud Deraison Re: nessus to PCI, Michael Hammer RE: nessus to PCI, Dan Tesch Re: nessus to PCI, David Rice RE: nessus to PCI, Vic N RE: nessus to PCI, Burnett, Robert RE: nessus to PCI, cdewitt <=

Previous by Date:	Re: nessus to PCI, Michael Hammer
Next by Date:	Whitepaper release: Risks of Passive Network Discovery Systems, ofir
Previous by Thread:	RE: nessus to PCI, Burnett, Robert
Next by Thread:	Aachen Summerschool Applied IT-Security, Maximillian Dornseif
Indexes:	[Date] [Thread] [Top] [All Lists]