[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Live Penetration Testing.

Are there any applications or projects to provide this *badly needed
service? I'm willing to assist in using or putting together an nmap
type applications that scans for known vulnerabilities and attempts to
make use of them for security awareness and _,*"prof"*,_ of concept

* Too often are PCI compliance testings coming up with false positives
based on server provided version data.  No matter how many times it's
spelled out that "These are to be used by authorized/allowed
applications(to discover usable features or avoid version conflicts)
and not by malicious applications.", there is always some one who is
happy for me to change(With the approval of BOFH) the reported version
to 0.0.0.

Reply to: