I was wondering if anyone has an opinion on the merits of Ruby on Rails v PHP,  from a security standpoint. Is one more inherently secure than the other?

If you have any published references that you could point me in the direction that would also be fantastic.

Thanks!

Just had a look at pwnpi. I think I'll order raspberry pi, instead! Thanks.

http://www.og150.com/

I was wondering if anyone here has any knowledge or experience of the OG150? They're currently out of stock but I intend to purchase one when available. They look like a very cheap alternative to Pwnie express.

Steve.

Just to clarify, if the phone is switched off, it will still emit a RF signal and be detected by the scanner. SOP is to remove the phone's battery to prevent detection.

OK, to be clear, this is purely hypothetical and only for lab testing.

If a Windows Server only has port 3389 open, given that no remote code exploit for MS12-020 has yet to manifest itself, what are the available attack vectors? Brute force?

Thanks. 

It's definately not too late. 28 is young! I was 30 when I took the transition from soldier in the British Army to IT Systems Admin - I didn't do IT in the army!

From the sounds of it your're on the right track. Most definitely concentrate on Web Application testing. Also, get signed up for the PWB/OSCP course too. It's worth the investment.

Take a look at this security organisation in Denmark:
https://www.csis.dk/da/csis/job/

Steve.

I understand every company, every network is not the same but how long would it take to pen test a company with 2000 PCs & 1000 servers? Naturally, the network is segmented into bite size chunks!

In terms of man hours, could one person conduct a pen test on a site this large and within a reasonable amount of time?  For sites this large, do pen test companies send in teams of testers?

I'd be interested to know what you all think.

I got the confirmation emails through fine but I messed up on my mental arithmetic! I put GMT ahead of EST by 6 hours instead of 5, so I only caught the Q&A session at the end of the webinar! To rub salt into the wound, one of the comments on chat was about how the presentation was the best from Rapid7 ever!

Thanks for the replies, guys. All very helpful.

Is it possible for an individual to perform a PCI scan or does that person have to be a member of an approved company (ASV)? Can somebody qualified to conduct PCI scans do this on a freelance basis?

Thanks in advance!

Worcestershire, Great Britain.

This may be a question for our UK members, but is there any comparison between The CESG Check certification and OSCP?

I know I'm not comparing apples with apples and CHECK status is to assure that the tester is qualified to test on HMG (Her Majesty's Government Infrastructure) but on a technical standpoint, how do they compare with each other?

http://www.cesg.gov.uk/servicecatalogue/CHECK/Pages/WhatisCHECK.aspx
 

Having used the UK Ministry of Defence DII systems I know just how unmanageable the whole thing is. I had to write down my password(s)  too - and I should know better!

This is completely hypothetical but if a company knows they have been compromised in some fashion, maybe through information from their ISP or host, would a pentest be of any value; considering the company would want the current attacker removed and not told how other attackers could get!

Is Incident Handling/forensics the only way to go in this scenario? Following up with regular pentests.

Echoes of British Telecom's frivolous Hyperlink Patent lawsuit from 2002! BT lost that one, not surprisingly!