Penetration Testing mailing list archives

Re: Need Some Guidance Please

From: Daniel Clemens <daniel.clemens () packetninjas net>
Date: Sat, 18 Apr 2009 11:34:40 -0500

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On Apr 17, 2009, at 11:35 PM, Jeffrey Walton wrote:

This can get you in trouble. I've been part of many incidences where
alarms start going off (literally - What's Up Gold and NetIQ) in the
NOC because the Security Team was testing without informing anyone.
The result is that someone higher up on the food chain gets very
irritated because the NOC team had to report downtime on servers.

So the servers aren't patched or reliable enough to withstand a scan?Sounds like something you might want to know about incase it was areal attack.Sounds like the _assessment_ is working and showing flaws in yourarchitecture.

And
it only gets worst when Domain Controllers are forced to reboot
because a test 'got away' from the Security team. I was also part of a
database recovery because a server was rebooted due to a penetration
test. Again, no one was informed, the DBA did not have an up to date
backup, and the instantaneous reboot corrupted the database.


Hackers rarely inform sysadmin of their intentions.

In the end, nearly anyone can acquire and use the tools.

True people can use acquire tools. But the people who drive thosetools make the difference.We have thousands of people in the world that drive cars, but only fewof them drive race cars for a living.A good pentester doesn't just use all the tools, he knows wherecertain configuration and implementation flaws will crop up and how hecan leverage them to his or her advantage.


| Daniel Uriah Clemens
| Packetninjas L.L.C | | http://www.packetninjas.net
| c. 205.567.6850
"Moments of sorrow are moments of sobriety"










-----BEGIN PGP SIGNATURE-----

iD8DBQFJ6gEglZy1vkUrR4MRAjPLAJ0TRVzcYnrH2ATOQWsnum8UPUs7cQCeIYya
zHlDjtT3pmFtPdEnLieEXNo=
=DITe
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Learn all of the latest penetration testing techniques in InfoSec Institute's Ethical Hacking class.
Totally hands-on course with evening Capture The Flag (CTF) exercises, Certified Ethical Hacker and Certified 
Penetration Tester exams, taught by an expert with years of real pen testing experience.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
------------------------------------------------------------------------

Current thread:

Need Some Guidance Please Elizabeth Tolson (Apr 17)
- Re: Need Some Guidance Please Jeffrey Walton (Apr 17)
  - Re: Need Some Guidance Please Michael Boman (Apr 18)
  - Re: Need Some Guidance Please Daniel Clemens (Apr 18)
    - Re: Need Some Guidance Please Jeffrey Walton (Apr 18)
  - Re: Need Some Guidance Please Micheal Cottingham (Apr 18)
    - Re: Need Some Guidance Please Michael Boman (Apr 21)
  - Re: Need Some Guidance Please Nate (Apr 18)
    - Need for Intrusion/Infection Data Baykal, Adnan (CSCIC) (Apr 21)
    - Re: Need for Intrusion/Infection Data Jon Janego (Apr 21)
    - Re: Need for Intrusion/Infection Data Leonardo Cavallari Militelli (Apr 21)
    - RE: Need for Intrusion/Infection Data Honer, Lance (Apr 21)
- Re: Need Some Guidance Please Elizabeth Tolson (Apr 21)
  - Re: Need Some Guidance Please Stephen Mullins (Apr 21)

(Thread continues...)