Educause Security Discussion mailing list archives

Re: Penetration Testing

From: Ruben Z Xing <xingr () MAIL MONTCLAIR EDU>
Date: Mon, 10 Feb 2003 12:23:02 -0500

Jim,

Good info. Is there an archived one available on the web or other
resources I can read it?

Thank you and regards,

Dr. Ruben Hsing
Professor,IDS
Montclair State Univ

----- Original Message -----
From: Jim Moore <jhmfa () CIS RIT EDU>
Date: Monday, February 10, 2003 11:53 am
Subject: Re: [SECURITY] Penetration Testing

A couple of years ago, I had a whitepaper that AtomicTangerine
(purchased by RedSiren) did on what should be in a penetration
test.  It
was a really good whitepaper.  Ask RedSiren for the whitepaper,
and then
see if that meets your needs.

Jim


St. Laurent, Tim wrote:

Hello everyone,

I was curious if anyone has contracted a third party to provide
penetration testing and auditing for their network and systems?

We are

looking at having someone do an "real" penetration test of our

network> and our systems.  I would like to avoid any company that
just comes in

and scans our network for vulnerabilities (i.e. a ISS scan) as

we can do

this ourselves.  If anyone has any recommendations as to which

companies> out there provide the best service,  I would appreciate
any good or bad

experiences.


Thanks,

Tim

----------University of Richmond----------
Tim St. Laurent
Security Administrator
*tstlaure () richmond edu
(804-289-8655



********** Participation and subscription information for this

EDUCAUSE> Discussion Group discussion list can be found at

http://www.educause.edu/memdir/cg/.



--
Jim Moore, CISSP, IAM
Information Security Officer
Rochester Institute of Technology
13 Lomb Memorial Drive
Rochester, NY 14623-5603

Office: 585-475-5406
Fax:    585-475-7950

PGP (jimmoore () mail rit edu): 9C33 0328  CD59 B602 82B8  8521 0B86 0DC9
963C D0C0

**********
Participation and subscription information for this EDUCAUSE
Discussion Group discussion list can be found at
http://www.educause.edu/memdir/cg/.


**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/memdir/cg/.

Current thread:

Penetration Testing St. Laurent, Tim (Feb 10)
- <Possible follow-ups>
- Re: Penetration Testing Jim Moore (Feb 10)
- Re: Penetration Testing St. Laurent, Tim (Feb 10)
- Re: Penetration Testing Ced Bennett (Feb 10)
- Re: Penetration Testing Ruben Z Xing (Feb 10)