Penetration Testing mailing list archives
RE: Attack trees
From: "Rocky" <rocky.he () g-wizinnovations com>
Date: Thu, 8 Dec 2005 07:05:54 +1100
There is also Practical Threat Analysis that has a tool for doing Threat Modeling and attack trees to some extent. It's an excellent tool. RH http://www.ptatechnologies.com/ -----Original Message----- From: Christophe Herault [mailto:cherault () venesege com] Sent: Thursday, 8 December 2005 1:23 AM To: pen-test () securityfocus com Subject: Attack trees Dear all, I would like to know if anyone is using a attack tree software. I saw Web-Scarab on owasp.org and a quality software on amenaza.com, but i don't know if it's really efficient, that's all for the solutions "on the shelve". I need to build one and i started with a "pacific" worm which is able to do a mapping network. However, i need to include a vulnerabilty database but the soft could be very slow by scanning the DB. Is anyone could help me please ? Regards and sorry for my poor english. -- Christophe Herault <cherault () venesege com> www.venesege.com ---------------------------------------------------------------------------- -- Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 ---------------------------------------------------------------------------- --- ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- Attack trees Christophe Herault (Dec 07)
- RE: Attack trees Nathan Einwechter (Dec 07)
- RE: Attack trees Rocky (Dec 07)
- <Possible follow-ups>
- Re: Attack trees mjacobs . 1 (Dec 08)
- Re: Re: Attack trees Terry . Ingoldsby (Dec 09)