Penetration Testing mailing list archives

Re: Re: Mpack

From: jason_jones98 () hotmail com
Date: 28 Jun 2007 15:04:08 -0000

You should not apologise, you have done nothing wrong. If a pen-tester is only interested in gathering "potential" 
vulnerabilities with automated tools, then they should consider themselves "not" a pen-tester. Malicious code and the 
use of malicious code is a "must" for a pen-tester. some advice with using customizable exploit tools: "know what the 
outcome is" - if you are not 100% then do not use.

JJ

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Swap Out your SPI or Watchfire app sec solution for
Cenzic's robust, accurate risk assessment and management
solution FREE - limited Time Offer

http://www.cenzic.com/wf-spi
------------------------------------------------------------------------

Current thread:

Mpack Nikolaj (Jun 26)
- Re: Mpack Jerome Athias (Jun 26)
  - Re: Mpack Kish Pent (Jun 26)
  - Re: Mpack Nikolaj (Jun 27)
- Re: Mpack Kish Pent (Jun 26)
  - RE: Mpack Erin Carroll (Jun 26)
    - RE: Mpack Matt Steer (Jun 27)
    - RE: Mpack Shaun Bertrand (Jun 27)
- <Possible follow-ups>
- RE: Mpack Jeff Norem (Jun 27)
- RE: Mpack Jay (Jun 27)
- Re: Re: Mpack jason_jones98 (Jun 28)