Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Security Audit & pen testing fnial report

From: Stephen Thornber <skthornber () mac com>
Date: Mon, 20 Oct 2008 20:22:16 +0100
I find it mind bogglingly - my new word of the day - amazing that people will not help, with straight answers instead of being obtuse or rude. If you know the answer to a question why not just give it instead of saying go and look it up. If the information sought is not a trade secret, going to take away your next customer, illegal or against some national security mandate, why oh why not give up the information.
I too look for stuff on google all the time but rarely actually find all or a satisfying, easy to understand, lay approach to my requirements.
I hate the better than you attitude, he says taking on a similar approach.
.... For me there are many useful books on audit and pen testing, and there are many organizations that you could talk too, ISACA for example, SANS as another.
Books - Penetration testers Open Source toolkit, Exam Prep for Certified Ethical Hackers, Common Sense Computer Security etc etc, See Amazon or similar for Hundreds of other titles.
Now down to business, I will gladly send you more details of material and example reports for different things and I will gladly help in any other way you might need it. 

So drop me a line off list anytime,
describe exactly what it is you are trying to achieve and I will, either answer or help you to answer the problem. 

Yours

Stephen K THORNBER
MRSH, MBCS, CISM, CISSP


On 20 Oct 2008, at 18:29, Michael Condon wrote:
Yes, of course I've tried Google. If I was satisfied with what I found, you wouldn't be getting this message. ----- Original Message ----- From: "Richard Golodner" <rgolodner () infratection com > To: "'Michael Condon'" <admin () singulartechnologysolutions com>; <security-basics () securityfocus com > 
Sent: Monday, October 20, 2008 12:11 PM
Subject: RE: Security Audit & pen testing fnial report



Michael, most of this stuff is easily found by using Google. As you
move forward in your career you will find that people will be willing to help a lot more once you have demonstrated that you have made an attempt to 
find some of this on your own. Also being able to use the information
available to you will help you get your job done better and waste less time 
waiting on answers from other people.

    most sincerely, Richard


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com ] On 
Behalf Of Michael Condon
Sent: Monday, October 20, 2008 10:05 AM
To: security-basics () securityfocus com; pen-test () securityfocus com
Subject: Security Audit & pen testing fnial report

Does anyone know where there are some sample
1). Final reports of Security Audit to Management
2). Basic outline for Security Audit/Pen testing procedure checklist?
Previous By Date Next
Previous By Thread Next

Current thread: