Security Basics mailing list archives
Re: Security Audit & pen testing fnial report
From: Stephen Thornber <skthornber () mac com>
Date: Mon, 20 Oct 2008 20:22:16 +0100
I find it mind bogglingly - my new word of the day - amazing that people will not help, with straight answers instead of being obtuse or rude. If you know the answer to a question why not just give it instead of saying go and look it up. If the information sought is not a trade secret, going to take away your next customer, illegal or against some national security mandate, why oh why not give up the information.
I too look for stuff on google all the time but rarely actually find all or a satisfying, easy to understand, lay approach to my requirements.
I hate the better than you attitude, he says taking on a similar approach.
.... For me there are many useful books on audit and pen testing, and there are many organizations that you could talk too, ISACA for example, SANS as another.
Books - Penetration testers Open Source toolkit, Exam Prep for Certified Ethical Hackers, Common Sense Computer Security etc etc, See Amazon or similar for Hundreds of other titles.
Now down to business, I will gladly send you more details of material and example reports for different things and I will gladly help in any other way you might need it.
So drop me a line off list anytime,describe exactly what it is you are trying to achieve and I will, either answer or help you to answer the problem.
Yours Stephen K THORNBER MRSH, MBCS, CISM, CISSP On 20 Oct 2008, at 18:29, Michael Condon wrote:
Yes, of course I've tried Google. If I was satisfied with what I found, you wouldn't be getting this message. ----- Original Message ----- From: "Richard Golodner" <rgolodner () infratection com > To: "'Michael Condon'" <admin () singulartechnologysolutions com>; <security-basics () securityfocus com >Sent: Monday, October 20, 2008 12:11 PM Subject: RE: Security Audit & pen testing fnial reportMichael, most of this stuff is easily found by using Google. As youmove forward in your career you will find that people will be willing to help a lot more once you have demonstrated that you have made an attempt tofind some of this on your own. Also being able to use the informationavailable to you will help you get your job done better and waste less timewaiting on answers from other people. most sincerely, Richard -----Original Message-----From: listbounce () securityfocus com [mailto:listbounce () securityfocus com ] OnBehalf Of Michael Condon Sent: Monday, October 20, 2008 10:05 AM To: security-basics () securityfocus com; pen-test () securityfocus com Subject: Security Audit & pen testing fnial report Does anyone know where there are some sample 1). Final reports of Security Audit to Management 2). Basic outline for Security Audit/Pen testing procedure checklist?
Current thread:
- Re: Upptime report tools?, (continued)
- Re: Upptime report tools? Kevin Liang (Oct 16)
- RE: Upptime report tools? Lim, James (GTS Pac Rim) (Oct 16)
- Re: Upptime report tools? CJ (Oct 16)
- Re: Upptime report tools? Kevin Liang (Oct 16)
- Re: Upptime report tools? Kurt Buff (Oct 16)
- Message not available
- Webb statistics program Mattias Hemmingtsson (Oct 16)
- Message not available
- Re: Disclaimer Jerry (Oct 16)
- Re: Disclaimer Michael Condon (Oct 17)
- Message not available
- Message not available
- Security Audit & pen testing fnial report Michael Condon (Oct 20)
- RE: Security Audit & pen testing fnial report Richard Golodner (Oct 20)
- Re: Security Audit & pen testing fnial report Michael Condon (Oct 20)
- Re: Security Audit & pen testing fnial report Stephen Thornber (Oct 20)
- Re: Security Audit & pen testing fnial report Michael Condon (Oct 21)
- Re: Security Audit & pen testing fnial report Ulisses Castro (thebug) (Oct 22)
- Re: Security Audit & pen testing fnial report Joey Peloquin (Oct 21)
- RE: Security Audit & pen testing fnial report Erin Carroll (Oct 22)
- Message not available
- Enumeration - determining Firewall/Router address Michael Condon (Oct 21)
- Re: Enumeration - determining Firewall/Router address Shreyas Zare (Oct 22)
- Re: Enumeration - determining Firewall/Router address Michael Condon (Oct 22)
- Re: Enumeration - determining Firewall/Router address Ansgar Wiechers (Oct 22)