Penetration Testing mailing list archives
Re: Why Penetration Test?
From: cbc <cboonchin () yahoo com>
Date: Fri, 10 Jun 2005 23:42:39 -0700 (PDT)
Hi All, My comments on these are: A pentest which is useful and is able to add value to a company who pays the service is only if the results and finding are tally with the goal and expectation established during the initiation of the exercise. It is meaningless to judge which scenarios is the best as if my goal of a pentest is to find as many as vulnerabilites you can and exploit it, then I will say scenario C is the best. But if my goal is to find which vulnerbailities would impact my business most, then scenario A is a better candidate. In summary, ensuring a proper goal and expectation is achieved during the planning stage is very vital. You will find the evaluation and management process more manageable by doing so! Regards, Boon Chin, Senior Security Consultant, Singapore __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Current thread:
- Why Penetration Test? tarunthenut (Jun 10)
- Re: Why Penetration Test? Terry Vernon (Jun 10)
- RE: Why Penetration Test? Erin Carroll (Jun 10)
- Re: Why Penetration Test? Brahman Thiyagalingham (Jun 10)
- Re: Why Penetration Test? cbc (Jun 10)
- Re: Why Penetration Test? Daniel Reynaud-Plantey (Jun 11)
- Re: Why Penetration Test? Amit (Jun 12)
- Re: Why Penetration Test? cbc (Jun 10)
- Re: Why Penetration Test? Rob Havelt (Jun 11)
- Re: Why Penetration Test? Petr . Kazil (Jun 11)
- Re: Why Penetration Test? Matt Curtin (Jun 20)
- <Possible follow-ups>
- RE: Why Penetration Test? DUBRAWSKY, IDO (CALLISMA) (Jun 10)
- RE: Why Penetration Test? Tony Tulio (Jun 10)
- Re: Re: Why Penetration Test? tarunthenut (Jun 13)
- Re: Why Penetration Test? Terry Vernon (Jun 13)
- Re: Why Penetration Test? Gareth Davies (Jun 13)
(Thread continues...)