Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Security Basics: Re: PCI DSS Req. 6.6 ( Web Application )

Re: PCI DSS Req. 6.6 ( Web Application )

From: Adriel Desautels <adriel_at_netragard.com>
Date: Tue, 27 May 2008 19:03:34 -0400

Mohamed,
        I do not specifically have any options, only recommendations. Have you
already performed a Web Application Security Assessment against your
application? Are you using the reverse proxy to protect an application
so that you can try and avoid having the assessment done? Tell me more
about your requirements and maybe I can help.

Regards,
        Adriel T. Desautels
        Chief Technology Officer
        Netragard, LLC.
        Office : 617-934-0269
        Mobile : 617-633-3821
        http://www.linkedin.com/pub/1/118/a45

        Join the Netragard, LLC. Linked In Group:
        http://www.linkedin.com/e/gis/48683/0B98E1705142

---------------------------------------------------------------
Netragard, LLC - http://www.netragard.com - "We make IT Safe"
Penetration Testing, Vulnerability Assessments, Website Security

Netragard Whitepaper Downloads:
-------------------------------
Choosing the right provider : http://tinyurl.com/2ahk3j
Three Things you must know : http://tinyurl.com/26pjsn

Mohamed Farid wrote:
> Thanks - but do you have another options ?
>
> Mohamed Farid ,CISSP,CCSP,S+
> m.farid.shawara_at_gmail.com
>
> -----Original Message-----
> From: Adriel Desautels [mailto:adriel_at_netragard.com]
> Sent: Tuesday, May 27, 2008 11:24 PM
> To: Mohamed Farid
> Cc: security-basics_at_securityfocus.com
> Subject: Re: PCI DSS Req. 6.6 ( Web Application )
>
> Mohamed,
> There is an entire thread about this subject. My recommendation was
> to
> use Mod Security. http://www.modsecurity.org.
>
> Regards,
> Adriel T. Desautels
> Chief Technology Officer
> Netragard, LLC.
> Office : 617-934-0269
> Mobile : 617-633-3821
> http://www.linkedin.com/pub/1/118/a45
>
> Join the Netragard, LLC. Linked In Group:
> http://www.linkedin.com/e/gis/48683/0B98E1705142
>
> ---------------------------------------------------------------
> Netragard, LLC - http://www.netragard.com - "We make IT Safe"
> Penetration Testing, Vulnerability Assessments, Website Security
>
> Netragard Whitepaper Downloads:
> -------------------------------
> Choosing the right provider : http://tinyurl.com/2ahk3j
> Three Things you must know : http://tinyurl.com/26pjsn
>
>
> Mohamed Farid wrote:
>> Dear All :
>>
>> Any recommendations for a cost effective Web Application Firewall to cover
>> the PCI DSS Requirement 6.6 ?
>>
>> Thanks ,,,
>> Mohamed Farid ,,,
>>
>
Received on May 28 2008

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]