|
|
Colapse all |
Post message
Help on TCP interception tool 2010-12-09 Vedantam Sekhar (vedantamsekhar gmail com) I am looking for a tool that sits between my client programm&the s= erver, gives the ability to manipulate the TCP packets before it goes out o= f the wire. Is there any such tool available? Thanks for the help... Sekhar ------------------------------------------------------------------------ [ more ] [ reply ] RE: felons as pen testers 2010-12-08 CTLucca wlrk com It's a tough decision to make. On the one hand you want a pen tester who is capable of providing the best assessment possible of your environment. On the other, you need to be certain your staff doesn't go rogue and essentially abuse the relationship. Look at the Albert Gonzalez case, the governm [ more ] [ reply ] A L0phCrack Alternative 2010-12-07 olufemimogaji gmail com (4 replies) Hello All, I recently used a trial version of L0phtCrack to perform a password audit of the user accounts in my company's active directory. It worked great, revealing all the weak passwords that users had. The only problem is that it's a trial version, and the full versions are just so expensive [ more ] [ reply ] Penetration Testing Certifications 2010-12-07 Mauro Silva (mauro a silva gmail com) Hi, I was wondering... I see tons of certifications for security and penetration testing and I would like your opinions about them. More precisely: - which certification is better - which one has more "rating" when hiring someone - and lastly which one is better to someone (like me) wanting to start [ more ] [ reply ] Is there a future? 2010-12-07 abigdeale gmail com (1 replies) Good day, I'm currently working in a corporation as a support engineer. Been in the field for 12years, love solving problems, taking the lead on projects, building infrastructure etc. I'm fasinated by security in such a way that it became a hobby, passion. And now I'm trying to make it a lifestyle. [ more ] [ reply ] Re: keyloggers 2010-12-07 Sandeep Cheema (51l3n7 live in) Not sure if Elite has survived but meets your requirements, did mine at least some 5 years back. Sent from BlackBerry® on Airtel -----Original Message----- From: Mike <xchimeras (at) gmail (dot) com [email concealed]> Date: Fri, 3 Dec 2010 23:32:01 To: <rappercrazzy (at) gmail (dot) com [email concealed]> Cc: <lkcmd911 (at) gmail (dot) com [email concealed]>; <listbounce@securityfoc [ more ] [ reply ] RE: oracle database scanner 2010-12-04 Syed Khaden (Syed Secure-Bytes com) Ryan try this http://www.secure-bytes.com/demodl/sademo.exe -----Original Message----- From: listbounce (at) securityfocus (dot) com [email concealed] [mailto:listbounce (at) securityfocus (dot) com [email concealed]] On Behalf Of K K Mookhey Sent: Friday, December 03, 2010 12:00 AM To: 'Ryan Giobbi'; pen-test (at) securityfocus (dot) com [email concealed] Subject: RE: oracle data [ more ] [ reply ] OWASP Zed Attack Proxy version 1.1.0 2010-12-05 psiinon (psiinon gmail com) Hi, The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. Version 1.1.0 of ZAP has now been released. This release adds the following main features: OWASP rebranding Brute Force scanner c/o the OWASP DirBuster project Po [ more ] [ reply ] Re: Passive PenTesting 2010-12-03 Robin (robin rbsec net) (1 replies) Mak, If the requests for the websites went through the machine that was capturing, they should appear in the hosts list in Network Miner. If you're only getting part of them, you might need to open the pcap file in Wireshark, and look by hand. Filtering traffic to/from tcp 80 should give you most o [ more ] [ reply ] |
|
Privacy Statement |
I am going to school yet, but I want to become a pentester in my later life. I've been programming for four years now and started to deal with IT-security two years ago. I've asked a lot of people working in IT-business, what they did to get their job, but unfortunately I never got to k
[ more ] [ reply ]