Adam Palmer, Linux, PHP Programmer, MySQL Developer, Website Security Consultant
msgbartop
I will happily conduct a FREE basic web security scan for any genuine organization interested in my services to point out whether or not I can find vulnerabilities in your application. Just contact me.
Need a PHP Programmer, PHP staff or project manager? Contact me now.
msgbarbottom

28 Sep 09 Security Consultant – Scope of work

As a Security Consultant, I’ve always had a difficult time with the scope of work and just how much detail to go into during the test. What to pen test is more often than not strictly defined, however what detail to go in to, is often not. In some cases the time constraints dictate the detail of the penetration test itself, however often with pen testing, more time is allowed than is necessary.

I have a specific example in mind, whereby I identified a possible DoS (Denial of Service) attack against a service running on a particular vendor’s hardware. The attack was only vaguely theoretically possible, however given the spare time, I did spend a number of hours writing an actual implementation of the Denial of Service attack, and then demonstrating proof of it’s functionality. At that point, the Client changed various configuration options which prevented this DoS, whilst technically mildly limiting functionality.

Should I not have gone to the time of actually writing this particular DoS attack, chances are that this configuration change would not have taken place and a flaw would have been left unchecked. After consulting with a few other pen testers, they all confirmed that they would not have gone in to anywhere near as much detail, and most likely just pointed out a potential for the denial of service on the final report. Personally, given the same opportunity again, I would certainly go into the same level of detail.

On a slightly related note, most pen testers make a point of keeping busy with the tests themselves rather than engaging in discussions with the Client. I can see the advantage of this, as you are technically being engaged as a penetration tester, and not as an IT/Network Consultant or Web/PHP Developer. I however, am usually happy to discuss the processes and progress of the test with the Client during the testing. In one case, flaws identified were resolved and re-tested whilst the engagement was in progress, which I personally found to be a very enjoyable and productive way of working together.

Tags: , , , , , , ,

Filed in Security Consultant, Technology
«
»


Leave a Comment

You must be logged in to post a comment.

Adam Palmer I'm Adam Palmer, and I'm a PHP Programmer, Web Security Consultant, and Linux Consultant. I run 'APNIC Solutions Ltd' and spend most of my time consulting, managing server clusters, and writing PHP, whilst what little spare time I have is dedicated to playing with gadgets.
Skype Me.!
sidebartop

Most Popular

sidebarbottom
sidebartop

Pages

sidebarbottom
sidebartop

Categories

sidebarbottom
sidebartop

Meta

sidebarbottom
sidebartop

Recent Comments

sidebarbottom
sidebartop

Recent Posts

sidebarbottom
sidebartop

Tags

alix apt-get bind C debian echo embedded ethernet gcc Hosting iproute2 iptables kernel Linux Linux robot mikrotik minipci mount MySQL openvpn PHP php5 PHP Developer PHP MySQL Developer php programmer picolcd Robot router routerboard 532a script security Security Consultant split access sql sql injection ssh SSL tcp the robot udp usb usb to ttl vps website security consultant xen
sidebarbottom
sidebartop

Archives

sidebarbottom
sidebartop

 

September 2010
M T W T F S S
« Aug    
 12345
6789101112
13141516171819
20212223242526
27282930  
sidebarbottom
sidebartop

Widgets & Links

  RSS Feed
sidebarbottom
Adam Palmer, Linux, PHP Programmer, MySQL Developer, Website Security Consultant   |  Contact Me  |  My Resume & Portfolio
© Adam Palmer . All Rights Reserved. Adam Palmer is a trading name of APNIC Solutions Ltd, Registered in England & Wales No. 05514218