|
Penetration Testing
mailing list archives
Penetration Whitepapers
From: Rob Havelt <rob () cobal org>
Date: Thu, 05 Feb 2004 12:51:00 -0500
Hi All,
I was wondering if anyone could point me at a good resource, as I've been
looking in several different places, and haven't been able to find quite
what I needed.
I'm looking for either white papers or case studies or some such detailing
actual real world attacks (more like real-world computer crime, computer
fraud, internal attacks, etc. and less on the damage from worms or virus,
DDoS, or the like) on companies who either didn't know that they had a bad
security posture, couldn't keep on top of infosec issues, or ones who knew
(either as the result of a pen test, health check, or some other VA) and
simply didn't take any steps toward remediation.
There is a ton of theory out there, risk data, and the like, and I have all
that. I also realize that usually when this happens companies and law
enforcement agencies, etc. try quite hard to keep the info under wraps for
the obvious reasons, but I'm thinking that there has to be a few
whitepapers out there as strictly "cautionary tales".
Anywhere anyone could point me for the info would be much appreciated.
--
oOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOoOo
My Life is a dark grey corridor....
Oh, I've been there, usually there's a midget making googly
eyes at me... I call him Mr. Pickelini -The Critic
---------------------------------------------------------------
rob () cobal org {pager: rphone () cobal org) rob.havelt
PGP Key: http://www.cobal.org/pyrob/pgp-key.html
---------------------------------------------------------------------------
----------------------------------------------------------------------------
 By Date 
By Thread
Current thread:
- Penetration Whitepapers Rob Havelt (Feb 05)
|
Intro
