Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: "PenTest" a container file

from [Javier Fernández-Sanguino] Network Security [Permanent Link]
Subject: Re: "PenTest" a container file
Date: Mon, 29 Jan 2007 09:11:28 +0100
Thor (Hammer of God) dijo: 

modem.  I mean, what kind of application development company using their own
encryption algorithm would hire someone to crack it who has to post to
PenTest for advice on what his first steps should be?

You will be surprised at the number of companies (even govt's) that do not do proper background checking of the companies they hire for security. Some companies/agencies just look at the money of the proposal and hire the cheapest guys around.

From my experience, some european companies that have to run audits every year (typically "summarised" to a pentest) and cannot repeat with the same company until X years go by [1] will sometimes contract some very lame company with good "presence" and no skills.

Regards

Javier

[1] Due to legitimate concerns of companies "getting comfortable" and not doing proper work the second time around.

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Password cracker tool, Walsh, Leo
Next by Date:  RE: Password cracker tool, Milind Nanal
Previous by Thread:  Re: "PenTest" a container file, Thor (Hammer of God)
Next by Thread:  Re: "PenTest" a container file, Jan Heisterkamp
Indexes:  [Date] [Thread] [Top] [All Lists]