Penetration Testing mailing list archives
Re: Volunteer pen testing
From: "L. Walker" <lwalker () magi net au>
Date: Wed, 15 Dec 2004 16:37:26 +1100
On Tue, 2004-12-14 at 14:04 -0800, Matt Bellizzi wrote:
Hey folks Just wanted to bounce an idea off on this list. Lately I've been thinking of doing some charity work. However I generally avoid physical labor. The idea has entered my brain to provide pen testing/security audit services to non profits. I am by no means a pet test expert. Although I do have solid networking/security skills (I'm a QA engineer for IPSec VPNs and firewalls). Obviously for a non profit to be eligible they would either need a constant-on connection or a co-located host. Just thought it would be a fun way to learn more about pen testing, help the community and helping organizations that are generally straped for cash.
Noble idea... however one way would be to pentest existing open source applications off the Internet, setup your own simple lab using a spare machine (or vmware). You may encounter some resistance, as someone offering free pen testing seems too good to be true, so offer non disclosure agreements, etc. if they start to get worried about the whole idea. -- L. Walker Administrator / Consultant
Current thread:
- Volunteer pen testing Matt Bellizzi (Dec 15)
- Re: Volunteer pen testing L. Walker (Dec 15)
- Re: Volunteer pen testing Matt Bellizzi (Dec 15)
- Re: Volunteer pen testing Travis Good (Dec 16)
- Re: Volunteer pen testing Matt Bellizzi (Dec 15)
- RE: Volunteer pen testing Chuck Fullerton (Dec 15)
- Re: Volunteer pen testing Richard Rager (Dec 15)
- <Possible follow-ups>
- RE: Volunteer pen testing Lachniet, Mark (Dec 15)
- Re: Volunteer pen testing L. Walker (Dec 15)