| To: | pen-test@securityfocus.com |
|---|---|
| Subject: | Some help on methodologies and reports |
| From: | Nikolaj <lorddoskias@gmail.com> |
| Date: | Wed, 27 Dec 2006 13:28:02 +0200 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | pentest-list2@consult.net |
| Delivered-to: | mailing list pen-test@securityfocus.com |
| Delivered-to: | moderator for pen-test@securityfocus.com |
| Domainkey-signature: | a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:user-agent:mime-version:to:subject:content-type:content-transfer-encoding; b=R7nmLLQnAjndymeJnHfZz8m5pY5Q4n2gwRKCtKv+hGzWoewNce4jVMFDlIJ8bse+r/GymHSNL+G5WO1jQjv62gnqriGlqXZ3aq9l/B6bc+NvNSzzjPVHhuTmNwtbovSAoDlJar2ksPxpJPbPv4bY16yhZTnPL5Fi6OHtFLxsfSE= |
| List-help: | <mailto:pen-test-help@securityfocus.com> |
| List-id: | <pen-test.list-id.securityfocus.com> |
| List-post: | <mailto:pen-test@securityfocus.com> |
| List-subscribe: | <mailto:pen-test-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:pen-test-unsubscribe@securityfocus.com> |
| Mailing-list: | contact pen-test-help@securityfocus.com; run by ezmlm |
| Resent-date: | Wed, 27 Dec 2006 16:03:17 -0700 (MST) |
| Resent-from: | pen-test-return-1078483325@securityfocus.com |
| Resent-message-id: | <20061227230317.ED2A333EF45@outgoing2.securityfocus.com> |
| Resent-sender: | listbounce@securityfocus.com |
| Sender: | listbounce@securityfocus.com |
| User-agent: | Thunderbird 1.5.0.9 (Windows/20061207) |
I would like to ask a few question concerning some aspects of
penetration testing.
A friend setup a little lan to mimic an ISP. He has different services - ranging from mysql to nagios etc. I was able to penetrate one of the server which let me to another and so forth. Eg. I penetrated his network. Now I want to create a legit report, so that it looks like a real one. Can you give me links or some hints on what should one such report include? Maybe there are drafts somewhere. I feel that what I did was more plain hacking than just pen testing. What are the differences between them, except the business relationship. Regards. |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: Re: CISSP, R. DuFresne |
|---|---|
| Next by Date: | Re: Some help on methodologies and reports, m . delibero |
| Previous by Thread: | VINA eLink-208, Dave |
| Next by Thread: | Re: Some help on methodologies and reports, m . delibero |
| Indexes: | [Date] [Thread] [Top] [All Lists] |