Has anyone worked with any companies that do assessments/pen test etc.. Wondering which ones people thought were good/bad.
Thanks
Printable View
Has anyone worked with any companies that do assessments/pen test etc.. Wondering which ones people thought were good/bad.
Thanks
If you haven't heard of it, GRC.com has some pretty good stuff if you're a Window's user.
Try....
http://www.securescan-it.com/web/
The reports are customizable to meet ur requirements......
IMHO R0n1n is looking for a company not a tool..
I have been planning the start of such a company in about 5 years, me and two good friends first want to have some more "work experience" and are then planning to start a "Auditing and Securing" company..
From all sides (Internet, WiFi, dumpster-diving, SE etc..).
I don't know of any companies offering such services in the BeNeLux (Belgium Netherlands and Luxemburg)
But seeing that you live in the USA, try @stake I heard some good things about them..
JinX you are correct, I`m looking for peoples experiences with the companies that do the work. I work for one such company but am in the process of setting up such a company so was wondering how peoples experiences with the current crop of firms have been.
I have quite enough tools to last me a lifeftime, but thanks anyway to the guys who made recommendations.
Jus a couple of questions I'd like to ask (you don't have to answer ;))
What kind(s) of Vuln. assessment will your company specialise in (Hardware/Software/People)?
How large (number of people working (fulltime-equivalents)) will your company be..
Are you willing to travel ?
Have you got any refferences ?
Priamry specialty will be network Vuln.Assessments (i.e. Pen tests), also internal assessment/pen tests, and security architecture and policy creation. Priamry target Platforms will be Windows, Linux, Solaris, As400, AIX, and HP, but we can probably deal with whatever we may come across (seen some tru64 boxes in the past).
Initially its going to be 3 people.
Yes travel is fine, as two of us do that now.
Yes we do, two of us currently work for the security practices of Big 4 accounting companies and one for a large financial company. All have 7+ official years in the field. We have performed this kind of work for large and small companies, in all sectors, so references are good to go
Oh, and it will be based in the U.S.
ok?
please excuse spelling mistakes...its early, having my first cup of coffee...(i can spell 'primary'!)