Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Dailydave: Re: Risk Management Services

Re: Risk Management Services

From: Dave Aitel <dave.aitel_at_gmail.com>
Date: Tue, 3 Apr 2007 00:58:07 -0400

According to Ryan Naraine[1], they're making 12 Million dollars a year
selling that and Retina, so someone's using it. Oddly, it's the exact same
amount of money that Sana just took in. Weird day in HIDS land.

I spent all night trying to massage the Mercur IMAP NTLM bug into
submission. Still nothing. Sometimes the hoolios are the hardest exploits.
Apparently people actually use these weird little Windows servers though so
they're worth doing. That's what I'm telling myself, after 10 hours on
Mercur, anyways.

-dave
[1]http://blogs.zdnet.com/security/?p=148

On 4/2/07, C Q <kyle.c.quest_at_gmail.com> wrote:
>
> There's probably two reasons why nobody wants to buy HIDS...
> First, which especially applies to Blink (made by eEye), it's
> because it's unusable... I turned it off and uninstalled it
> after using it for just a few minutes. Second, companies
> rely on their significant investements in firewalls, IPSes,
> application proxies, etc and they feel that they are protected
> enough (I'm not saying that they are correct in their assumptions,
> but that's what they usually think :-) ).
>
> Companies do, however, buy other types of host-based
> "risk management systems" that try to protect their IP,
> sensitive information, etc, which also helps them with compliance
> (SOX,HIPAA,PCI,etc).
>
> On 4/2/07, Dave Aitel <dave.aitel_at_gmail.com> wrote:
>
> > A HIDS shakeup? Sana takes in more money and Ross Brown gets fired from
> > eEye's CEO all in the same day? I never can get anyone to buy HIDS. We often
> > recommend it in our reports, but no company ever bites the bullet and does
> > it. Perhaps when they think HIDS they think this:
> > http://media1.break.com/dnet/media/content/pic2903.jpg .
> >
> > I wanted to point out that Applied Security has posted the results from
> > their shmoocon hacking contest (note that I come in last!).
> > http://www.appliedsec.com/conferences.html
> >
> > They've also got a server set up so everyone can play, which, I have to
> > say, takes cojones. I guess that's the sort of thing you can do when you are
> > a sponsor for GRSecurity.
> >
> > -dave
> >
> >
> > _______________________________________________
> > Dailydave mailing list
> > Dailydave_at_lists.immunitysec.com
> > http://lists.immunitysec.com/mailman/listinfo/dailydave
> >
> >
>
> _______________________________________________
> Dailydave mailing list
> Dailydave_at_lists.immunitysec.com
> http://lists.immunitysec.com/mailman/listinfo/dailydave
>
>

_______________________________________________
Dailydave mailing list
Dailydave_at_lists.immunitysec.com
http://lists.immunitysec.com/mailman/listinfo/dailydave
Received on Apr 02 2007

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos