Vulnerability Assessment companies
Results 1 to 8 of 8

Thread: Vulnerability Assessment companies

  1. #1
    Senior Member
    Join Date
    Oct 2002
    Posts
    314

    Question Vulnerability Assessment companies

    Has anyone worked with any companies that do assessments/pen test etc.. Wondering which ones people thought were good/bad.

    Thanks
    Quis custodiet ipsos custodes

  2. #2
    Senior Member
    Join Date
    Nov 2003
    Posts
    247
    If you haven't heard of it, GRC.com has some pretty good stuff if you're a Window's user.
    www.ADigitalPimp.com
    There is a ghost in the machine, and he is my friend.

  3. #3
    Senior Member
    Join Date
    May 2003
    Posts
    159
    Try....

    http://www.securescan-it.com/web/

    The reports are customizable to meet ur requirements......
    ****** Any man who knows all the answers most likely misunderstood the questions *****

  4. #4
    Leftie Linux Lover the_JinX's Avatar
    Join Date
    Nov 2001
    Location
    Beverwijk Netherlands
    Posts
    2,534
    IMHO R0n1n is looking for a company not a tool..

    I have been planning the start of such a company in about 5 years, me and two good friends first want to have some more "work experience" and are then planning to start a "Auditing and Securing" company..
    From all sides (Internet, WiFi, dumpster-diving, SE etc..).

    I don't know of any companies offering such services in the BeNeLux (Belgium Netherlands and Luxemburg)

    But seeing that you live in the USA, try @stake I heard some good things about them..
    ASCII stupid question, get a stupid ANSI.
    When in Russia, pet a PETSCII.

    Get your ass over to SLAYRadio the best station for C64 Remixes !

  5. #5
    Senior Member
    Join Date
    Oct 2002
    Posts
    314
    JinX you are correct, I`m looking for peoples experiences with the companies that do the work. I work for one such company but am in the process of setting up such a company so was wondering how peoples experiences with the current crop of firms have been.

    I have quite enough tools to last me a lifeftime, but thanks anyway to the guys who made recommendations.
    Quis custodiet ipsos custodes

  6. #6
    Leftie Linux Lover the_JinX's Avatar
    Join Date
    Nov 2001
    Location
    Beverwijk Netherlands
    Posts
    2,534
    Jus a couple of questions I'd like to ask (you don't have to answer )

    What kind(s) of Vuln. assessment will your company specialise in (Hardware/Software/People)?
    How large (number of people working (fulltime-equivalents)) will your company be..
    Are you willing to travel ?
    Have you got any refferences ?
    ASCII stupid question, get a stupid ANSI.
    When in Russia, pet a PETSCII.

    Get your ass over to SLAYRadio the best station for C64 Remixes !

  7. #7
    Senior Member
    Join Date
    Oct 2002
    Posts
    314
    Priamry specialty will be network Vuln.Assessments (i.e. Pen tests), also internal assessment/pen tests, and security architecture and policy creation. Priamry target Platforms will be Windows, Linux, Solaris, As400, AIX, and HP, but we can probably deal with whatever we may come across (seen some tru64 boxes in the past).

    Initially its going to be 3 people.

    Yes travel is fine, as two of us do that now.

    Yes we do, two of us currently work for the security practices of Big 4 accounting companies and one for a large financial company. All have 7+ official years in the field. We have performed this kind of work for large and small companies, in all sectors, so references are good to go

    Oh, and it will be based in the U.S.

    ok?
    Quis custodiet ipsos custodes

  8. #8
    Senior Member
    Join Date
    Oct 2002
    Posts
    314
    please excuse spelling mistakes...its early, having my first cup of coffee...(i can spell 'primary'!)
    Quis custodiet ipsos custodes

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •