Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: Looking for help against Chinese Hacking Team
From: "Mike Hale" <eyeronic.design () gmail com>
Date: Fri, 12 Dec 2008 18:22:07 -0800

Your choices are cheap, fast and properly.

Pick two.
 ;)

If the concern in this case is a vulnerability in your web
application, I'd suggest looking at a web-application firewall.

Setting it up properly can get very expensive, unless you know exactly
how your traffic needs to look.  There are some open-source ones
available that are pretty good, such as ModSecurity.

If you're the techincal guy for the company, I'd recomend taking a
weekend to read up on the various features and setting up a test box
somewhere.  Once that's done, start by securing small portions of your
web site at a time.  Figure out what legitimate packets look like, and
allow only those through.

On Fri, Dec 12, 2008 at 4:59 PM, harveyfrank <joet () ticadvisors com> wrote:

We've been battling the Chinese for several months now and have gone through
several waves of US  security experts who have failed to stop them. In their
defense, we are not on an unlimited budget and they've gotten us to a point
where it looks as though somewhere among the site's 400 scripts is a SQL
injection vulnerability.

Automated testing by a few pen test products seems to think we're fine. We
definitely are not.

Is it possible to hire a CEH to find the Chinese-discovered vulnerability
for a few hundred dollars? (We aren't just being cheap, we've blown our wad
on security that hasn't worked.) Would someone with intimate knowledge of
the latest wave of Chinese attacks be required for this job? Besides our
first rate security team that's just been beat, I've tried the $200 pen test
folks and they have all failed. Microsoft security help has also failed.

Advice (Besides porting to Linux)? Help?
--
View this message in context: 
http://www.nabble.com/Looking-for-help-against-Chinese-Hacking-Team-tp20986210p20986210.html
Sent from the Penetration Testing mailing list archive at Nabble.com.


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------





-- 
09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault