Penetration Testing mailing list archives
RE: Pen testing and empyment
From: <salexander () frontporch com>
Date: Tue, 28 Mar 2006 15:02:47 -0800
Penetration testing and system testing are different but there is some skill crossover. System testing is a part of the QA process and is performed on products/software before they are released. A system tester may or may not do any security testing. System testers who perform security testing may have skills that would be useful in penetration testing. A penetration test is security specific and does not focus on any one product. A penetration test looks at the security of running systems with different operating systems and software. A penetration test may take advantage of configuration issues that are not relevant in a system test. Steven -----Original Message----- From: leehaynes () carleeprotection com [mailto:leehaynes () carleeprotection com] Sent: Saturday, March 25, 2006 3:20 AM To: pen-test () securityfocus com Subject: Pen testing and empyment Hi, Can anyone help. I have been involved in system testing for about the last 18 months, and would now like to work as a pent tester. I am applying for junoir pentest roles and they are ask me if I have any pen test expeirence, I tell them what I have done and then they ask me for my CV. After receiveing my CV their tell me that I have no pentesting experince. I suppose what I would like to know is: Is a pen testing and a system testing one and the same or are they different, because after a qiuck search on the net they to me appear to be the same. Can any one answer my question. Thanks Lee ------------------------------------------------------------------------ ------ This List Sponsored by: Cenzic Concerned about Web Application Security? As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/forms/ec.php?pubid=10025 And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request () cenzic com ------------------------------------------------------------------------ ------ ------------------------------------------------------------------------------ This List Sponsored by: Cenzic Concerned about Web Application Security? As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/forms/ec.php?pubid=10025 And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request () cenzic com ------------------------------------------------------------------------------
Current thread:
- Pen testing and empyment leehaynes (Mar 25)
- Re: Pen testing and empyment Billy Bues (Mar 27)
- Re: Pen testing and empyment Pete Herzog (Mar 28)
- <Possible follow-ups>
- RE: Pen testing and empyment salexander (Mar 29)