Home page logo

pen-test logo Penetration Testing mailing list archives

Re: Pen Test vs. Health Check
From: danielrm26 <danielrm26 () yahoo com>
Date: Wed, 28 Jan 2004 09:46:09 -0500

Clint Bodungen wrote:
If you leave out the hacker/cracker verbiage, point of view B.S.,
"professional" vs "non-professional", and focus on logical definitions and
apply them to the subject you have your answer.  It's amazing how logical
facts can elevate so much objective discussion:
...snipped by danielrm26
Therefore, "penetration" testing is (or should be) _part of_ a complete
vulnerability assessment.

Your methodical analysis is flawless, with one exception -- *it doesn't represent reality*. Whether it's true or not from an academic standpoint, anyone in the field knows that vunl assessments and pen-tests are very distinct from eachother. But yes, you bring good points. It's just that, as you noted, *should* and *is* are two completely different animals.



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]