Penetration Testing mailing list archives
Re: Evaluating pentesters
From: Daniel Clemens <daniel.clemens () packetninjas net>
Date: Thu, 11 Mar 2010 15:47:23 -0600
On Mar 9, 2010, at 12:31 AM, ben.dexter () act gov au wrote:
There's an approved list of PCI compliance scanning vendors from the PCI Security Standards Council if you're interested. I can't vouch for the depth they go to, but it might be a starting point. https://www.pcisecuritystandards.org/pdfs/asv_report.html
ASV's and Pentesters are two different animals all together. This may be a horrible place to start. | Daniel Uriah Clemens | Packetninjas L.L.C | | http://www.packetninjas.net | c. 205.567.6850 | | o. 866.267.8851 "Moments of sorrow are moments of sobriety" ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Re: Evaluating pentesters, (continued)
- Re: Evaluating pentesters Brent Huston (Mar 11)
- Re: Evaluating pentesters Shohn Trojacek (Mar 09)
- Re: Evaluating pentesters Rudra Kamal Sinha Roy (Mar 11)
- RE: Evaluating pentesters Frye, Dan (Mar 11)
- RE: Evaluating pentesters security curmudgeon (Mar 15)
- Re: Evaluating pentesters Pete Herzog (Mar 17)
- RE: Evaluating pentesters Cor Rosielle (Mar 23)
- Re: Evaluating pentesters Rudra Kamal Sinha Roy (Mar 11)
- Message not available
- Fwd: Evaluating pentesters Daniel Hood (Mar 11)
- Re: Evaluating pentesters Mohamed Farid (Mar 11)
- Re: Evaluating pentesters ben . dexter (Mar 11)
- Re: Evaluating pentesters Daniel Clemens (Mar 11)