Full Disclosure mailing list archives
Re: Vulnerability/Penetration Testing Tools
From: Yvan Boily <yboily () gmail com>
Date: Wed, 18 Jan 2006 12:00:01 -0600
I don't want to work as a programmer for you. 2080 hours a year leaves no time for vacation, and that would suck. On 1/18/06, Madison, Marc <mmadison () fnni com> wrote:
Valdis Kletnieks wrote:Something to keep in mind however - many people make that comparison,and don't calculate the *TOTAL* cost.If your developer is getting paid $60K/year, the *encumbered* cost(benefits, office, etc) is close to twicethat. And if he's writing an in-house BidiBLAh, that's time he's *not*writing stuff you *can't* buyoff-the-shelf. As a result, it breaks out as:BidiBLAH: $10,000scripting clss: $350 6 man-weeks time: $15,000OK? Got that? Suddenly doesn't look like such a good deal, does it?Maybe you *should* just buyBidiBLAH, and have that guy coding that custom interface between twoin-house systems instead....(And don't say "I only pay my developer $30K, so he can take 2man-months to do it" - the kind ofdeveloper you can >keep for $30K is probably going to take a lot morethan twice as long as the $60Kdeveloper.....)I understand your point about TCO, even though you don't make a very good case for it. As for BidiBLAH, maybe you should look at the product before speaking about it! If you have used this product then please give me your insight as to what you think and why. Really if your currently using this product I want to know what you think! Now for the Math, and why your TCO argument wasn't so good, Developer $60K/year divided by the adopted 2080 man hours year (this is the average hours work, 40 hour week, 5 days, etc...) = $28.85/hourly, so..... BidiBLAH: $10,000 Scripting class: $350 6 man-weeks time: $6924.00 Like you said, "many people make that comparison, and don't calculate the *TOTAL* cost". _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-- ____ ygjb Computer Science is no more about computers than astronomy is about telescopes. E. W. Dijkstra _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: Vulnerability/Penetration Testing Tools, (continued)
- Re: Vulnerability/Penetration Testing Tools greybrimstone (Jan 19)
- RE: Vulnerability/Penetration Testing Tools Madison, Marc (Jan 18)
- Re: Vulnerability/Penetration Testing Tools Valdis . Kletnieks (Jan 18)
- Re: Vulnerability/Penetration Testing Tools greybrimstone (Jan 19)
- Re: Vulnerability/Penetration Testing Tools Dave Korn (Jan 27)
- Re: Vulnerability/Penetration Testing Tools Valdis . Kletnieks (Jan 18)
- Re: Vulnerability/Penetration Testing Tools greybrimstone (Jan 19)
- Re[2]: Vulnerability/Penetration Testing Tools Thierry Zoller (Jan 19)
- Re: Vulnerability/Penetration Testing Tools Michael Holstein (Jan 19)
- Re: Vulnerability/Penetration Testing Tools greybrimstone (Jan 19)
- Re: Vulnerability/Penetration Testing Tools Yvan Boily (Jan 18)
- Re: Vulnerability/Penetration Testing Tools Valdis . Kletnieks (Jan 18)
- Re: Vulnerability/Penetration Testing Tools Andre Ludwig (Jan 18)
- Re: Vulnerability/Penetration Testing Tools greybrimstone (Jan 19)
- Re: Vulnerability/Penetration Testing Tools [AutoScan] Vincent van Scherpenseel (Jan 19)
- Re: Vulnerability/Penetration Testing Tools [AutoScan] greybrimstone (Jan 19)