Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: Application Assessment
From: cbc <cboonchin () yahoo com>
Date: Wed, 10 Aug 2005 06:57:51 -0700 (PDT)

In addition to what AdamT has mentioned, fix your
scope and requirement before settling for the details.


More importantly why you want to do that assessment?
Compliance? You need to understand the requirement of
carrying out such task because if you are the one who
conduct the assessment, it may not be a valid test
because you are not the independant party. 

As for tools to carry such assessment, there are some
commercial tools available to recommend but it all
depend on the features you want. Human effort is
needed in the case of source code review and some
customised script testing. No single tools will do the
100% jobs. Thus certain skill sets are needed to
conduct such testing.

Hope this helps.


Cheers,
BC


                
____________________________________________________
Start your day with Yahoo! - make it your home page 
http://www.yahoo.com/r/hs 
 

------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]