Penetration Testing mailing list archives
Re: Using 0days as part of pen-test?
From: Oliver Schad <oliver.schad () oschad de>
Date: Thu, 15 Jan 2009 08:53:18 +0100
Am Mittwoch, 14. Januar 2009 schrieb mir purdy () tecman com:
Good points Pete. But since the sub: caught my attention, I thought I would point out (if it has not already been done) that 0-day tests, by definition, cannot test anything other than the quality of the anomaly-based detection system.
That's not right - if you have a security concept which guarantees security in depth, you should get access to a system with only less important data and a low position of trust. I know that you can't guarantee that in many cases on every part in a network but you should build a concept with security in depth in mind. The general question is: What do you want to test, what do you want to prove? Do you want to show how hard it is to get important data und compromise important systems? If this is your mission then you should choose all weapons you have. If you want to check software updates, selection of software and critical configurations of software why do you make a pen test? In this case I think you should ask the system administrator for an account to get access to all systems to check all software installed and all configuations. It's the much easier way to check this. Regards Oli
Attachment:
signature.asc
Description: This is a digitally signed message part.
Current thread:
- Using 0days as part of pen-test? ArcSighter Elite (Jan 12)
- Re: Using 0days as part of pen-test? Chris Griffin (Jan 13)
- Re: Using 0days as part of pen-test? Pete Herzog (Jan 13)
- Re: Using 0days as part of pen-test? purdy (Jan 14)
- Re: Using 0days as part of pen-test? Oliver Schad (Jan 15)
- Re: Using 0days as part of pen-test? David Howe (Jan 15)
- we are security critics was: Re: Using 0days as part of pen-test? Pete Herzog (Jan 15)
- Re: we are security critics was: Re: Using 0days as part of pen-test? David Howe (Jan 17)
- Re: Using 0days as part of pen-test? purdy (Jan 14)
- Re: Using 0days as part of pen-test? Oliver Schad (Jan 15)
- Re: Using 0days as part of pen-test? Pete Herzog (Jan 17)
- Re: Using 0days as part of pen-test? David Howe (Jan 17)
- Re: Using 0days as part of pen-test? Oliver Schad (Jan 17)
- Re: Using 0days as part of pen-test? David Howe (Jan 20)
- Re: Using 0days as part of pen-test? ArcSighter Elite (Jan 13)