Penetration Testing mailing list archives
Re: [PEN-TEST] Penetration X Auditing Teste & other misteries
From: "Christopher M. Bergeron" <ChrisB () HGSS COM>
Date: Fri, 25 Aug 2000 14:03:02 -0400
I can still guarantee that 'agreed' test will be much more productive than the 'stealth' one.
Vanja Hrustic
Is it possible that if the Net admins 'know' you'll be trying to get, they may try even harder to make it difficult for you? I.e. they go out of their way to apply the last 42 patches that they've been neglecting before you can find something... and thus produce an "inaccurate" portrait of the network. Had the admins not been aware of the test, the network would have been left in a "truer" state. A state more like what a potential black-hat would find in a real world scenario. Or do you consider this a "special case" and not typical?
Current thread:
- Re: [PEN-TEST] Penetration X Auditing Teste & other misteries Christopher M. Bergeron (Aug 26)