Full Disclosure: Re: [Professional IT Security Providers - Exposed] QuietMove ( D - )

[reepex <reepex () gmail com>]

On Jan 1, 2008 9:53 PM, Andre Gironda <andreg () gmail com> wrote:

> I wouldn't do a direct comparison, but I thought UPT was more about being
> funny than being seriously
> challenging.

ok so they are nothing alike because ptp/hts actually teach you stuff while
"UPT" was for jokes... so your post was stupid


> Look, you rated Denim Group as A-.  You must either work there - or
> know the guys.  Dan Cornell is a moron compared to Adam Muntner - and
> his code is certainly worse (e.g. Sprajax).

I am not a part of secreview but I realize following email threads is very
complicated for you.


> Adam and team know Burp Suite, use manual web application testing - in
> addition to traditional dynamic and static analysis.
>
> I have seen Adam and crew using Fortify Software's SCA and Tracer
> tools.  I have seen them using Hailstorm ARC and modifying the
> Javascript included in the SmartAttack library.  I would call this a
> best-of-breed security testing methodology.

So you list 5 tools they use then mention they modify a javascript
library...  So basically they use automated tools and  are former  web
developers ... sound pretty hardcore


> More people will read mine than anything you do -- and with my name on it
> -- they are certainly bound to take it a lot more seriously.
You must be a cissp because you take yourself and the internet very
seriously. I am pretty sure no one cares about your opinion either.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/