Re: Penetration Testing

From: Claudio Broglia (xeon@sysroot.eu)
Date: Wed May 02 2007 - 15:08:00 EDT

• Next message: rlandrigan: "RE: Can we say Back|Track best CD for a Penetration Test"
• Previous message: Petr.Kazil@eap.nl: "Evil autorun CD - ideas ? downloadable exploits anywhere ?"
• In reply to: Farrukh Ahmed: "Penetration Testing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> Dear Fellows,
> Hello,
>
Hi Farrukh,

> I would like to do Penetration Testing of our server. I have added firewall
> on my server and I would like to test security of our server from out side
> of allowed network. Can you please suggest me the tools from which i can
> test security of the server.
>
I think the question is a little bad posed.
I suggest you to start thinking about *what* you want to pentest, and
what you want to achieve (a simple vulnerability assessment, an in-depth
pen-test to your network heart, /etc) and then plan what to do to
achieve it. What tools you want to use follows from this.

> I know about nmap and nessus security scanner.
Yes, they are two general tools to do network scanning and vulnerability
assessment.

Good reading!!
- -xeon
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (MingW32)

iD8DBQFGOOGQdPj0aKBXx10RAqZKAJ0X8AodNmmYnrHCw7DjEsbCWiJutQCdGaii
KzLjJGSagR9wbHH359XXLo0=
=OJ1n
-----END PGP SIGNATURE-----

• application/x-pkcs7-signature attachment: S/MIME Cryptographic Signature

• Next message: rlandrigan: "RE: Can we say Back|Track best CD for a Penetration Test"
• Previous message: Petr.Kazil@eap.nl: "Evil autorun CD - ideas ? downloadable exploits anywhere ?"
• In reply to: Farrukh Ahmed: "Penetration Testing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:45 EDT