silicon.com : Results for penetration testing

silicon.com : Results for penetration testing http://www.silicon.com Results for penetration testing en-us www.silicon.com http://www.silicon.com/i/s/feeds/simple_logo.gif http://www.silicon.com 124 50 News feed from silicon.com Web Application Vulnerabilities and Avoiding Application Exposure http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60812979p,00.htm Code reviews, extensive penetration testing, and intrusion detection systems are just a few ways that companies are battling a growing problem. Web applications reach out to a larger, less-trusted user base than legacy client-server applications... editorial@silicon.com (Silicon Editorial) Wed, 11 Nov 2009 23:00:00 +0000 Firewall Implementation and Testing http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60812871p,00.htm This paper summarizes the experiences in setting up and testing one's own firewall, as well as performing a penetration attack from an external machine to find misconfigurations. Many of them are misconfigured which is seldom discovered due to poor... editorial@silicon.com (Silicon Editorial) Wed, 11 Nov 2009 23:00:00 +0000 Web Application Security: Automated scanning versus manual penetration testing http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60391116p,00.htm There are two methods to detect Web vulnerability: using manual penetration testing and code review or using automated scanning tools and static analysis. Research has shown that a vast number of Web sites are vulnerable to application attacks... editorial@silicon.com (Silicon Editorial) Mon, 12 Oct 2009 15:12:07 +0000 Web application security: automated scanning versus manual penetration testing. http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60535078p,00.htm Research has shown that a vast number of Web sites are vulnerable to Web application attacks and that a great percentage of these attacks occur over the HTTP/S protocols, ports that are often exposed to the entire online community. editorial@silicon.com (Silicon Editorial) Fri, 04 Sep 2009 10:45:50 +0000 Web Application Penetration Testing http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60644408p,00.htm Owing to the ubiquity, ease of access, cost effectiveness and provision of service, the Web Application has emerged as a driving force of adoption. With the advent of web 2.0 and web 3.0 technologies, web application has evolved to be more advanced... editorial@silicon.com (Silicon Editorial) Sat, 08 Aug 2009 01:20:56 +0000 'Hack your own Oracle database' tool unveiled next week http://chkpt.zdnet.com/chkpt/siliconfeed/http://software.silicon.com/security/0,39024655,39465597,00.htm These tools just help streamline the penetration testing process. Chris Gates and Mario Ceballos will present Oracle pen-testing methodology and give out "all the tools to break the 'unbreakable' Oracle as Metasploit auxiliary modules", according... editorial@silicon.com (Silicon Editorial) Fri, 24 Jul 2009 14:23:02 +0000 Devfense Network Security Assessment: Return on Investment http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60613079p,00.htm For most SMBs and enterprise-class operations, a network assessment process that includes a physical walkthrough of facilities, infrastructure investigation, penetration testing, and other measures is essential for maintaining business continuity... editorial@silicon.com (Silicon Editorial) Tue, 14 Jul 2009 01:19:13 +0000 Home Office CIO on taming tech and why ID cards are good news http://chkpt.zdnet.com/chkpt/siliconfeed/http://www.silicon.com/publicsector/0,3800010403,39446860,00.htm We do penetration testing on the databases, as well as splitting up of duties so there is not one person who can go all the way from one set of data to another. The Home Office CIO speaks to silicon.com's Nick Heath on ID cards, protecting data... editorial@silicon.com (Silicon Editorial) Fri, 10 Jul 2009 10:48:00 +0000 A Systematic Methodology for Firewall Penetration Testing http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60608706p,00.htm SRI Consulting's firewall testing procedures include penetration testing, a design review, and policy evaluation. Firewall testing is one of the most useful of a set of alternatives for evaluating the security effectiveness of a firewall. editorial@silicon.com (Silicon Editorial) Wed, 01 Jul 2009 01:19:37 +0000 Automated Penetration Testing: Completing the Vulnerability Management Framework http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60267913p,00.htm Today's network pen test services like AOmega's Automated Penetration Service (APS) are designed in support of the vulnerability management process. Vulnerability scanning is the first component of the pen test methodology and is also referred to... editorial@silicon.com (Silicon Editorial) Fri, 08 May 2009 04:26:01 +0000 What Is a Penetration Test? http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60586958p,00.htm When performing a Penetration test with the SecPoint Penetrator one has the advantage of a wide range of integrated advanced utilities to do Penetration testing. A penetration test subjects a system or a range of systems to real life security tests. editorial@silicon.com (Silicon Editorial) Fri, 01 May 2009 01:18:56 +0000 Security Implications of Windows Access Tokens - A Penetration Tester http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60586933p,00.htm More specific technical details are then given on how the features of Windows access tokens can be used to perform powerful post-exploitation functions during penetration testing, along with a basic methodology for including an assessment of the... editorial@silicon.com (Silicon Editorial) Fri, 01 May 2009 01:18:56 +0000 Why you should hack your own systems http://chkpt.zdnet.com/chkpt/siliconfeed/http://software.silicon.com/security/0,39024655,39420667,00.htm Therefore the best practice is to take a multi-tiered approach to testing software applications for security flaws, by using static code and dynamic program analysis along with vulnerability assessment and scanning tools, and penetration testing. editorial@silicon.com (Silicon Editorial) Wed, 22 Apr 2009 08:00:00 +0000 Map your WarDrive with these two popular mapping applications http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60279295p,00.htm In this sample chapter from WarDriving and Wireless Penetration Testing, learn how to use two of the most popular mapping applications: GPSMAP for Linux (Kismet) and Stumbverter for Windows (NetStumpler) to record and display your WarDrive findings. editorial@silicon.com (Silicon Editorial) Tue, 24 Mar 2009 14:27:40 +0000 Penetration Testing: Taking the Guesswork out of Vulnerability Management http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60278662p,00.htm This white paper from IDC demonstrates how penetration testing software efficiently and easily helps address these challenges. Download this IDC Executive Brief and see why penetration testing is necessary for organizations to: editorial@silicon.com (Silicon Editorial) Wed, 18 Mar 2009 20:16:46 +0000 Automated Penetration Testing: Can IT Afford Not To? http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60278663p,00.htm During IDC's research and in-depth interviews, they found compelling reasons why IT executives and team members must adopt Penetration Testing as an integral part of their Security and Vulnerability Management (SVM) processes and programs. editorial@silicon.com (Silicon Editorial) Wed, 18 Mar 2009 20:16:46 +0000 Penetration Testing: Assessing Your Overall Security Before Attackers Do http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60278661p,00.htm Perform penetration tests against your network and find security holes before hackers do Network Security has evolved from protecting against "script kiddies" trying to break into networks to combating criminal organizations that have complex and... editorial@silicon.com (Silicon Editorial) Wed, 18 Mar 2009 20:16:46 +0000 MSDN Webcast: Penetration Testing With Visual Studio Team System and Fortify Security Tester (Level 200) http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60521649p,00.htm Many organizations rely on application penetration testing to help identify vulnerabilities in Web applications. Microsoft Visual Studio 2005 Team Edition for Software Testers provides a powerful application-testing platform. editorial@silicon.com (Silicon Editorial) Wed, 31 Dec 2008 00:00:31 +0000 World Bank hit by cyber intrusion epidemic? http://chkpt.zdnet.com/chkpt/siliconfeed/http://www.silicon.com/financialservices/0,3800010322,39301934,00.htm Cluley said: "Ideally, if you're a large organisation or financial organisation, then you would have a team of penetration testers testing your system to the limit looking for those weaknesses, looking for those holes. editorial@silicon.com (Silicon Editorial) Mon, 13 Oct 2008 11:28:02 +0000 Penetration Testing http://chkpt.zdnet.com/chkpt/siliconfeed/http://whitepapers.silicon.com/0,39024759,60058027p,00.htm In this white paper, Paul Midian explains the methodology and ethos behind penetration testing. He discusses why penetration testing is not merely the serial execution of automated tools and generation of technical reports that it is frequently... editorial@silicon.com (Silicon Editorial) Tue, 02 Sep 2008 07:05:37 +0000