It’s a testing time for all

By Gunter Ollmann on Sep 3, 2004 1:11 PM
Filed under

Gunter Ollmann explains the dangers of penetration testing and reviews the best ways to reduce the risks

One of the most interesting phases of any penetration test (pentest) is the actual exploitation of the discovered vulnerabilities. Exploitation is used not only to verify that the vulnerability exists (rather than a false-positive), but is also a stepping stone to gaining visibility and access to hosts or data not initially accessible.

In any pentest, it is important to scope the environment under investigation, and address the bounds of any possible exploitation. This is often driven by the technical understanding of the client's nominated contact and their level of "ownership" of the environment.

You must be a registered member to access this content.
Please Sign in below or Register now.
NOTE: This Feature is more than 7 days old.
Please login to view the rest of this article

Registered users may log in here.

Login or Register now and get unlimited access.


Why sign up?
  • Unlimited access to SC Magazine content as well as access to to our global resources from SC Magazine US and UK editions.
  • Full use of over 11,000 articles database covering breaking news, video interviews, case studies, research, product reviews and exclusive features with fast and intuitive filtering of results.
  • Personalised "Recommended for you" filters to ensure you have the most relevant content at your finger tips.
  • Daily security bulletin direct to your inbox covering the latest security news from Australia/NZ and around the world.

Register now, its free! We'll never sell your details to third parties and it helps SC Magazine to keep serving you quality stories.
Sign up to receive SC Magazine email newsletters
   FOLLOW US...
Most Read