Penetration Testing mailing list archives
Re: Pen Test vs. Health Check
From: danielrm26 <danielrm26 () yahoo com>
Date: Wed, 28 Jan 2004 09:46:09 -0500
Clint Bodungen wrote:
If you leave out the hacker/cracker verbiage, point of view B.S., "professional" vs "non-professional", and focus on logical definitions and apply them to the subject you have your answer. It's amazing how logical facts can elevate so much objective discussion:
...snipped by danielrm26
Therefore, "penetration" testing is (or should be) _part of_ a complete vulnerability assessment.
Your methodical analysis is flawless, with one exception -- *it doesn't represent reality*. Whether it's true or not from an academic standpoint, anyone in the field knows that vunl assessments and pen-tests are very distinct from eachother. But yes, you bring good points. It's just that, as you noted, *should* and *is* are two completely different animals.
-danielrm26 --------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- Pen Test vs. Health Check Andy Cuff (Jan 25)
- Re: Pen Test vs. Health Check Nexus (Jan 25)
- RE: Pen Test vs. Health Check Robert E. Lee (Jan 26)
- Re: Pen Test vs. Health Check Ivan Arce (Jan 29)
- RE: Pen Test vs. Health Check Rob Shein (Jan 26)
- Re: Pen Test vs. Health Check danielrm26 (Jan 27)
- Re: Pen Test vs. Health Check Clint Bodungen (Jan 27)
- Re: Pen Test vs. Health Check danielrm26 (Jan 28)
- Re: Pen Test vs. Health Check Clint Bodungen (Jan 28)
- Re: Pen Test vs. Health Check danielrm26 (Jan 27)
- Re: Pen Test vs. Health Check Ivan Arce (Jan 29)
- <Possible follow-ups>
- Re: Pen Test vs. Health Check Don Parker (Jan 26)
- RE: Pen Test vs. Health Check Yvan Boily (Jan 26)
- RE: Pen Test vs. Health Check Thompson, Jimi (Jan 26)