Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: Licensed Penetration Tester LPT
From: Richard Van Luvender <rvanluve () comcast net>
Date: Thu, 27 Apr 2006 09:17:24 -0400

Correct. Do not confuse the certification "Licensed Penetration Tester" with
a government recognized licensure program. However the potential exists for
someone in the proper position to take an existing certification program,
and submit it for consideration as a sanctioned license to conduct forensic
investigations. The credential must have several components, minimum
requirements of eligibility, an exam that can validly evaluate the
candidates knowledge and skill, a practical component to obtaining the
certification, a code of conduct, and a continuing education requirement.


Rick



On 4/26/06 4:54 PM, "xelerated" <xelerated () gmail com> wrote:

Actually, you have to be a licensed Private Investigator,
not a certified pen
tester.

I think it was on the register's site.

On 4/26/06, Phil Frederick
<flosofl () gmail com> wrote:
This is happening now.  Georgia has pending
legislation for forensic
examination of information systems.  If you aren't
licensed as an
Investigator in the state, you can be charged with a felony
if the law
passes.

I can't find a link, but I swear I read this a couple
days ago.
Anyone have any info, or was I hallucinating :)

On 4/25/06, v
b <r0cketgrl () yahoo com> wrote:
All funning aside, this was included in a
topic of a
BoF at the recent ShmooCon held in DC.  The speakers

contended that unless the community becomes
self-policing, there WOULD
eventually be government
legislation to license information security

practitioners.  Interesting theory.  I like the idea
of shipping all
unlicensed practitioners to Lincoln.
Could do wonders for that local
economy. :-)

Regards.


--- Dogten <dogten () d3fcon org>
wrote:

Mark Teicher wrote:
Why not license security
engineers/gurus like they
do social workers, plumbers and doctors.


Then after one gets everyone to comply, partner
with an
insurance company to offer liability and
malpractice insurance to the
licensed penetration
testers, just in case someone accidently shuts
down
a life support system in a hospital as they are
scanning
random Class 'C's on the internet or
hijacking root DNS servers in order
to play audio
streams.

For those who do not comply, set
up Senate
hearings, and send out letters to those who do not

comply, "Are you an unlicensed penetration tester?"
If yes, please list
all your friends, neighbors, etc
that may or may not be unlicense
penetration
testers.  Once they have rounded up all the non

complying penetration testers, escort them to local
train stations, and
guide them onto the train, where
they will be taken to re-education
camps in Lincoln,
Nebraska.  --:)


-----Original
Message-----

From: Dogten <dogten () d3fcon org>
Sent:
Apr 20, 2006 10:08 PM
To: Steve Friedl <steve () unixwiz net>

Cc: pen-test () securityfocus com
Subject: Re: Licensed Penetration
Tester LPT

Steve Friedl wrote:

If it's
not from the government, it's not a real
license.


where does literary license come in? the media
certainly practices it

with impunity.

--
-dogten, C�ISSP

_________________
Fight the power and the power will fight back

Your only as good as the system you hack
If you become a problem
you will be replaced
Banned, shut down, erased !






------------------------------------------------------------------------------

This List Sponsored by: Cenzic

Concerned about Web
Application Security?
Why not go with the #1 solution - Cenzic, the

only one to win the Analyst's
Choice Award from eWeek. As attacks
through web
applications continue to rise,
you need to
proactively protect your applications
from hackers. Cenzic has the

most comprehensive solutions to meet your
application security
penetration
testing and vulnerability management needs. You

have an option to go with a
managed service (Cenzic ClickToSecure) or
an
enterprise software
(Cenzic Hailstorm). Download FREE
whitepaper on
how a managed service can
help you:

http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited
time we can do a FREE
audit for you to confirm your
results
from other product. Contact us at
request () cenzic com for details.




------------------------------------------------------------------------------








Shhhh,
they'll see us.

--
-dogten, C�ISSP
_________________

Fight the power and the power will fight back
Your only as good as
the system you hack
If you become a problem you will be replaced

Banned, shut down, erased !




------------------------------------------------------------------------------

This List Sponsored by: Cenzic

Concerned about Web
Application Security?
Why not go with the #1 solution - Cenzic, the
only
one to win the Analyst's
Choice Award from eWeek. As attacks
through web
applications continue to rise,
you need to proactively
protect your applications
from hackers. Cenzic has the
most
comprehensive solutions to meet your
application security penetration

testing and vulnerability management needs. You have
an option to go
with a
managed service (Cenzic ClickToSecure) or an
enterprise
software
(Cenzic Hailstorm). Download FREE whitepaper on how
a
managed service can
help you:

http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited
time we can do a FREE audit
for you to confirm your
results from
other product. Contact us at
request () cenzic com for details.


------------------------------------------------------------------------------







__________________________________________________
Do You Yahoo!?

Tired of spam?  Yahoo! Mail has the best spam protection around

http://mail.yahoo.com


------------------------------------------------------------------------------

This List Sponsored by: Cenzic

Concerned about Web Application
Security?
Why not go with the #1 solution - Cenzic, the only one to win
the Analyst's
Choice Award from eWeek. As attacks through web applications
continue to rise,
you need to proactively protect your applications from
hackers. Cenzic has the
most comprehensive solutions to meet your
application security penetration
testing and vulnerability management
needs. You have an option to go with a
managed service (Cenzic
ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE
whitepaper on how a managed service can
help you:
http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time
we can do a FREE audit for you to confirm your
results from other product.
Contact us at request () cenzic com for details.

------------------------------------------------------------------------------








------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to rise,
you need to proactively protect your applications from hackers. Cenzic has the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault