Home page logo
/

basics logo Security Basics mailing list archives

RE: Binary Analysis with Internal Solutions
From: "Mike Vella" <mike () bakerross co uk>
Date: Tue, 24 Jul 2012 17:08:16 +0100

If they are done together (Pen test and Vul scan) then I think yes.
I'm not a pen tester though so it's just my opinion.

I imagine bin analysis could go on and on and on ....

mike

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of nschroedl () mtiorg com
Sent: 24 July 2012 16:15
To: security-basics () securityfocus com
Subject: Binary Analysis with Internal Solutions

Hello everyone,

                A debate has been started in the office that I work in over
this question.  

"Should binary analysis (i.e. reversing and fuzzing) be part of an internal
vulnerability and pen testing solution?"

                There is mission critical custom in house software solutions
deployed here.  My opinion is Yes, but others say it is a waste of resources
to go this deep into offensive security.  Please send your comments, and
opinions so that I can either win/loose this debate.

Nick Schroedl

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate In this guide we
examine the importance of Apache-SSL and who needs an SSL certificate.  We
look at how SSL works, how it benefits your company and how your customers
can tell if a site is secure. You will find out how to test, purchase,
install and use a thawte Digital Certificate on your Apache web server.
Throughout, best practices for set-up are highlighted to help you ensure
efficient ongoing management of your encryption keys and digital
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727
d1
------------------------------------------------------------------------

The contents of this e-mail and any attachments are the property of Baker Ross Limited\Yellow Moon UK Ltd and are 
intended for the confidential use of the named recipient(s) only. They may be legally privileged and should not be 
communicated or relied upon by any person without our express written consent. If you are not the addressee please 
notify the sender immediately. Any files attached to this e-mail will have been checked with virus detection software 
before transmission. However you should carry out your own virus check before opening any attachment. Baker Ross 
Limited\Yellow Moon UK Ltd accepts no liability for any loss or damage which may be caused by software viruses. Baker 
Ross Limited\Yellow Moon UK Ltd may monitor email traffic data and also email content for the purposes of security and 
staff training.Baker Ross Ltd\Yellow Moon UK Ltd cannot guarantee the accuracy or completeness of this email after it 
is sent from the originator over the internet and accepts no
  responsibility for changes made after it was sent. Any opinion expressed in this email is personal to the author and 
may not necessarily reflect the opinions of Baker Ross Ltd\Yellow Moon UK Ltd.
 

Baker Ross Limited registered in England, registered number 1604275, VAT Reg No. GB 375 5220 52.
Yellow Moon UK Limited registered in England, registered number 4781729, VAT Reg No. GB 811 5660 50.

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]