Security Basics mailing list archives
SkillSet for Pen Tester
From: Vedantam Sekhar <vedantamsekhar () gmail com>
Date: Fri, 17 Jun 2011 21:01:43 +0530
Hi Group, When a tester start the assessment on his client's network, he encounter various technologies, services, protocols, applications built on various technologies(Java, asp, iis, apache, tomcat, ERP,SAP) which he needs to attack. Obviously it may not be possible for him to be a expert or atleast have knowledge on these. In this scenerio what approach to follow in the limited time window mutually agreed by client&tester? Obviously oneway is to perform trail&error on each and every exploit for that technology available in google. Thnx, Sekhar ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- SkillSet for Pen Tester Vedantam Sekhar (Jun 17)
- Re: SkillSet for Pen Tester AK (Jun 25)