Re: Some help on methodologies and reports

To:	"m.delibero@comcast.net" <m.delibero@comcast.net>
Subject:	Re: Some help on methodologies and reports
From:	"crazy frog crazy frog" <i.m.crazy.frog@gmail.com>
Date:	Thu, 28 Dec 2006 18:46:56 +0530
Cc:	Nikolaj <lorddoskias@gmail.com>, pen-test@securityfocus.com
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
Domainkey-signature:	a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=jtXzycTEITdduS3lHVlsW7LYzV7espYqq3xvc2dKxxxWx8kqzp5QIkSxlmrnFgGYa+mhm8/U/sP9JbNmakmf8fvb1cNpFkTNtvlgK2R6/iun+XvvW7JSHx7Ywt7Or+H16noXaT0JqUIdN60iiQADSPUZ7xQNybTTtyw4rtw4T1Q=
In-reply-to:	<122820060104.25247.459318100001C81B0000629F2206998499019D0A0D07040A0BD203@comcast.net>
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
References:	<122820060104.25247.459318100001C81B0000629F2206998499019D0A0D07040A0BD203@comcast.net>
Resent-date:	Thu, 28 Dec 2006 17:20:08 -0700 (MST)
Resent-from:	pen-test-return-1078483336@securityfocus.com
Resent-message-id:	<20061229002008.13D3A23AB3C@outgoing3.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com

guess you would like to check out the collection of following reports : -
www.secgeeks.com/penetration_testing_report_format.html
---------------------------------------
http://www.secgeeks.com
http://secgeeks.com/node/feed
Submit you security articles,send them to secgeek@secgeeks.com

http://www.newskicks.com
Submit and kick for new stories from all around the world.
---------------------------------------
On 12/28/06, m.delibero@comcast.net <m.delibero@comcast.net> wrote:

Nikolaj,

  If you are running windows you can try the OWASP Report Generator.

  http://www.owasp.org/index.php/ORG_%28Owasp_Report_Generator%29

  Thanks,
  Mike de Libero
 -------------- Original message ----------------------
From: Nikolaj <lorddoskias@gmail.com>
> I would like to ask a few question concerning some aspects of
> penetration testing.
>
> A friend setup a little lan to mimic an ISP. He has different services -
> ranging from mysql to nagios etc. I was able to penetrate one of the
> server which let me to another and so forth. Eg. I penetrated his
> network. Now I want to create a legit report, so that it looks like a
> real one. Can you give me links or some hints on what should one such
> report include? Maybe there are drafts somewhere.
>
> I feel that what I did was more plain hacking than just pen testing.
> What are the differences between them, except the business relationship.
>
> Regards.

--

<Prev in Thread]	Current Thread	[Next in Thread>
Some help on methodologies and reports, Nikolaj Re: Some help on methodologies and reports, m . delibero Re: Some help on methodologies and reports, crazy frog crazy frog <= RE: Some help on methodologies and reports, Shenk, Jerry A

Previous by Date:	Re: Virtual environments security, Michel Pereira
Next by Date:	RE Traceroute question, Francois Labreque
Previous by Thread:	Re: Some help on methodologies and reports, m . delibero
Next by Thread:	RE: Some help on methodologies and reports, Shenk, Jerry A
Indexes:	[Date] [Thread] [Top] [All Lists]