Re: Licensed Penetration Tester LPT

From: Richard Van Luvender (rvanluve@comcast.net)
Date: Thu Apr 27 2006 - 09:17:24 EDT

• Next message: Frank Knobbe: "RE: Licensed Penetration Tester LPT"
• Previous message: Laurent: "Re: Live Linux Distro"
• In reply to: xelerated: "Re: Licensed Penetration Tester LPT"
• Next in thread: Brian Anderson: "Re: Licensed Penetration Tester LPT"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Correct. Do not confuse the certification "Licensed Penetration Tester" with
a government recognized licensure program. However the potential exists for
someone in the proper position to take an existing certification program,
and submit it for consideration as a sanctioned license to conduct forensic
investigations. The credential must have several components, minimum
requirements of eligibility, an exam that can validly evaluate the
candidates knowledge and skill, a practical component to obtaining the
certification, a code of conduct, and a continuing education requirement.

Rick

On 4/26/06 4:54 PM, "xelerated" <xelerated@gmail.com> wrote:

> Actually, you have to be a licensed Private Investigator,
not a certified pen
> tester.

I think it was on the register's site.

On 4/26/06, Phil Frederick
> <flosofl@gmail.com> wrote:
> This is happening now. Georgia has pending
> legislation for forensic
> examination of information systems. If you aren't
> licensed as an
> Investigator in the state, you can be charged with a felony
> if the law
> passes.
>
> I can't find a link, but I swear I read this a couple
> days ago.
> Anyone have any info, or was I hallucinating :)
>
> On 4/25/06, v
> b <r0cketgrl@yahoo.com> wrote:
> > All funning aside, this was included in a
> topic of a
> > BoF at the recent ShmooCon held in DC. The speakers
> >
> contended that unless the community becomes
> > self-policing, there WOULD
> eventually be government
> > legislation to license information security
> >
> practitioners. Interesting theory. I like the idea
> > of shipping all
> unlicensed practitioners to Lincoln.
> > Could do wonders for that local
> economy. :-)
> >
> > Regards.
> >
> >
> > --- Dogten <dogten@d3fcon.org>
> wrote:
> >
> > > Mark Teicher wrote:
> > > > Why not license security
> engineers/gurus like they
> > > do social workers, plumbers and doctors.
> > >
> >
> > > > Then after one gets everyone to comply, partner
> > > with an
> insurance company to offer liability and
> > > malpractice insurance to the
> licensed penetration
> > > testers, just in case someone accidently shuts
> down
> > > a life support system in a hospital as they are
> > > scanning
> random Class 'C's on the internet or
> > > hijacking root DNS servers in order
> to play audio
> > > streams.
> > > >
> > > > For those who do not comply, set
> up Senate
> > > hearings, and send out letters to those who do not
> > >
> comply, "Are you an unlicensed penetration tester?"
> > > If yes, please list
> all your friends, neighbors, etc
> > > that may or may not be unlicense
> penetration
> > > testers. Once they have rounded up all the non
> > >
> complying penetration testers, escort them to local
> > > train stations, and
> guide them onto the train, where
> > > they will be taken to re-education
> camps in Lincoln,
> > > Nebraska. --:)
> > > >
> > > >
> > > > -----Original
> Message-----
> > > >
> > > >> From: Dogten <dogten@d3fcon.org>
> > > >> Sent:
> Apr 20, 2006 10:08 PM
> > > >> To: Steve Friedl <steve@unixwiz.net>
> > > >>
> Cc: pen-test@securityfocus.com
> > > >> Subject: Re: Licensed Penetration
> Tester LPT
> > > >>
> > > >> Steve Friedl wrote:
> > > >>
> > > >>> If it's
> not from the government, it's not a real
> > > license.
> > > >>>
> > > >>
> where does literary license come in? the media
> > > certainly practices it
>
> > > >> with impunity.
> > > >>
> > > >> --
> > > >> -dogten, C�ISSP
> > > >>
> _________________
> > > >> Fight the power and the power will fight back
> > >
> >> Your only as good as the system you hack
> > > >> If you become a problem
> you will be replaced
> > > >> Banned, shut down, erased !
> > > >>
> > > >>
>
> > > >>
> > >
> >
> ------------------------------------------------------------------------------
>
> > > >> This List Sponsored by: Cenzic
> > > >>
> > > >> Concerned about Web
> Application Security?
> > > >> Why not go with the #1 solution - Cenzic, the
>
> > > only one to win the Analyst's
> > > >> Choice Award from eWeek. As attacks
> through web
> > > applications continue to rise,
> > > >> you need to
> proactively protect your applications
> > > from hackers. Cenzic has the
> > >
> >> most comprehensive solutions to meet your
> > > application security
> penetration
> > > >> testing and vulnerability management needs. You
> > >
> have an option to go with a
> > > >> managed service (Cenzic ClickToSecure) or
> an
> > > enterprise software
> > > >> (Cenzic Hailstorm). Download FREE
> whitepaper on
> > > how a managed service can
> > > >> help you:
> > >
> http://www.cenzic.com/news_events/wpappsec.php
> > > >> And, now for a limited
> time we can do a FREE
> > > audit for you to confirm your
> > > >> results
> from other product. Contact us at
> > > request@cenzic.com for details.
> > >
> >>
> > >
> >
> ------------------------------------------------------------------------------
>
> > > >>
> > > >>
> > > >
> > > >
> > > >
> > > >
> > > >
> > > Shhhh,
> they'll see us.
> > >
> > > --
> > > -dogten, C�ISSP
> > > _________________
>
> > > Fight the power and the power will fight back
> > > Your only as good as
> the system you hack
> > > If you become a problem you will be replaced
> > >
> Banned, shut down, erased !
> > >
> > >
> > >
> >
> ------------------------------------------------------------------------------
>
> > > This List Sponsored by: Cenzic
> > >
> > > Concerned about Web
> Application Security?
> > > Why not go with the #1 solution - Cenzic, the
> only
> > > one to win the Analyst's
> > > Choice Award from eWeek. As attacks
> through web
> > > applications continue to rise,
> > > you need to proactively
> protect your applications
> > > from hackers. Cenzic has the
> > > most
> comprehensive solutions to meet your
> > > application security penetration
>
> > > testing and vulnerability management needs. You have
> > > an option to go
> with a
> > > managed service (Cenzic ClickToSecure) or an
> > > enterprise
> software
> > > (Cenzic Hailstorm). Download FREE whitepaper on how
> > > a
> managed service can
> > > help you:
> > >
> http://www.cenzic.com/news_events/wpappsec.php
> > > And, now for a limited
> time we can do a FREE audit
> > > for you to confirm your
> > > results from
> other product. Contact us at
> > > request@cenzic.com for details.
> > >
> >
> ------------------------------------------------------------------------------
>
> > >
> > >
> >
> >
> >
> >
> __________________________________________________
> > Do You Yahoo!?
> >
> Tired of spam? Yahoo! Mail has the best spam protection around
> >
> http://mail.yahoo.com
> >
> >
> ------------------------------------------------------------------------------
>
> > This List Sponsored by: Cenzic
> >
> > Concerned about Web Application
> Security?
> > Why not go with the #1 solution - Cenzic, the only one to win
> the Analyst's
> > Choice Award from eWeek. As attacks through web applications
> continue to rise,
> > you need to proactively protect your applications from
> hackers. Cenzic has the
> > most comprehensive solutions to meet your
> application security penetration
> > testing and vulnerability management
> needs. You have an option to go with a
> > managed service (Cenzic
> ClickToSecure) or an enterprise software
> > (Cenzic Hailstorm). Download FREE
> whitepaper on how a managed service can
> > help you:
> http://www.cenzic.com/news_events/wpappsec.php
> > And, now for a limited time
> we can do a FREE audit for you to confirm your
> > results from other product.
> Contact us at request@cenzic.com for details.
> >
> ------------------------------------------------------------------------------
>
> >
> >
>

------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to rise,
you need to proactively protect your applications from hackers. Cenzic has the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request@cenzic.com for details.
------------------------------------------------------------------------------

• Next message: Frank Knobbe: "RE: Licensed Penetration Tester LPT"
• Previous message: Laurent: "Re: Live Linux Distro"
• In reply to: xelerated: "Re: Licensed Penetration Tester LPT"
• Next in thread: Brian Anderson: "Re: Licensed Penetration Tester LPT"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:53 EDT