-
RoleReversal changed their profile picture 3 years ago
-
RoleReversal replied to the topic Hosting company infosec teams and security questionnaires in the forum Other 6 years, 5 months ago
Hi lorddicranius (and thanks to Mowgli for the prod),
You’re not alone these are/were the bane of my life whilst working in DCs.
I think the QA database and portal are the ideal process, but in practice real world application doesn’t deliver on the promise (in my experience). Especially if you’re handing the process of to a sales or other…[Read more]
-
RoleReversal replied to the topic Should I be worried? CandC server in the forum Network Pen Testing 8 years, 3 months ago
t3st,
assuming by wifi analyser you mean the wireless tool by Farpoc?
I use the same tool, as it’s essentially a wireless spectrum analyser similar to aircrack/kismet/etc, My guess is CandC is merely a SSID of a neighbouring AP and (hopefully) not a direct threat to your environment.
-
RoleReversal replied to the topic I cant install MSF on my ubuntu 12.10 in the forum Tutorials 8 years, 4 months ago
@Cyber.spirit wrote:
im not new on linux
Hence my attempted caveat. But you are having problems, and you did ask for help; which I was trying to provide. Won’t bother next time.
-
RoleReversal replied to the topic I cant install MSF on my ubuntu 12.10 in the forum Tutorials 8 years, 4 months ago
Could be many things, have you checked all the usual candidates? download checksums? File/user permissions? etc?
Possible stupid (and/or insulting – not intended) question, you are in same directory as the *.run installer when issuing the ./*.run command?
I’m running on 12.10 and MSF running perfectly my end…..
-
RoleReversal replied to the topic CHECK V OSCP? in the forum OSCP – Offensive Security Certified Professional 8 years, 4 months ago
Sorry, should have been clearer: my experience is with the Team Member level certs.
Team Lead on old the to-do list (which I believe is far harder). Robin Wood has a good right up of his experiences with the TL level exams
-
RoleReversal replied to the topic Monitoring day to day vulnerability scan results in the forum General Certification 8 years, 4 months ago
I’ve not taken a good look myself, only ran across them myself a couple of days ago, but Risk.io may do what you need.
It is a commercial service, but there is a free/limited option, and all new accounts start with a 30day Pro trial.
Hopefully it might solve your issues, either way I’d be interested in your thoughts and experiences if you do…[Read more]
-
RoleReversal replied to the topic CHECK V OSCP? in the forum OSCP – Offensive Security Certified Professional 8 years, 4 months ago
They both have their uses, and having done both I’d strongly suggest doing both (if UK based).
OSCP will develop a deep technical understanding, CHECK/CREST will help get you the work to put that understanding to the test.
That’s not to say the CHECK/CREST isn’t technically challenging, but having done OSCP first CHECK certification was a…[Read more]
-
RoleReversal replied to the topic Ethical Hacking, need hackers, tips in the forum Career Central 8 years, 4 months ago
Hi Ender,
welcome to EH-Net.
Depending on your location you could look to local security businesses who may be willing to assist in return for a share in the publicity, or to local groups (DC#, 2600, etc.) for individuals.
Only concern I’d have, is I’ve seen the same marketing spin tried over the years, often resulting in some very bright…[Read more]
-
RoleReversal replied to the topic 12 Steps to a malware free existence in the forum Malware 8 years, 4 months ago
Hi Hudson,
welcome to EH-Net 🙂
Not wanting to pull your first post apart, but this seems to be computing for the truely paranoid. Whilst most of it is good advice, in the real world you’ve got zero chance of getting standard users to take this precautions; I’m an overly paranoid infosec guy and the only step I follow is checking the hash sums…[Read more]
-
RoleReversal replied to the topic Network Hacking / VM's in the forum Network Pen Testing 8 years, 4 months ago
If you’ve already got a virtual environment for your server/app lab set-up take a look at Vyatta’s open source edition.
They’ve got some fairly powerful network kit available as virtual images. I’ve got one running as a router handling the core of my lab environment without issue.
If you’ve got some experience with other network kit (Cisco et…[Read more]
-
RoleReversal replied to the topic privileges of law enforcement authorities in the forum Compliance, Regulations & Standards 8 years, 4 months ago
@artistic wrote:
@SecurityMonkey wrote:
Sounds like someone is trying to get his homework done by others… lol
something like that 😛 but i have already submitted mine. just wanted to know different thoughts. 🙂
OK, I’ll give benefit of the doubt; you start first, as you already have an answer.
-
RoleReversal replied to the topic The guy suing companies for using SSL/TLS in the forum News from the Outside World 8 years, 5 months ago
From my limited understanding of the situation I also called BS.
But I also believe (can’t find my sources, sorry) that several big names have already paid up to avoid the legal costs, so TQP must have something with a legal foundation to it.
Time to grab the popcorn and see how this one plays out.
-
RoleReversal replied to the topic dns2geoip.py in the forum Tools 8 years, 5 months ago
Interesting looking script, thanks for sharing.
I’ll definitely keep it in my bag of tricks for a rainy day and let you know how it goes.
-
RoleReversal replied to the topic Certifications you need to have in order to be a Pen Tester. in the forum General Certification 8 years, 5 months ago
@MaXe wrote:
@Andrew Waite wrote:
Regardless of opinions of particular certs, surely having a questionable (in some people’s eyes, discussion for another thread) cert like C|EH is still better than an empty space in it’s place?
I would say it depends on the company you are applying at, if you only got CEH, and it’s a highly technical and very…
-
RoleReversal replied to the topic Certifications you need to have in order to be a Pen Tester. in the forum General Certification 8 years, 5 months ago
Not wanting to hi-jack the thread but I’m not sure I understand the logic behind removing certifications from CV’s or LinedIn. I’ve achieved more respected and advanced certifications since gaining C|EH, but C|EH still holds a mention on my resume.
Regardless of opinions of particular certs, surely having a questionable (in some people’s eyes,…[Read more]
-
RoleReversal replied to the topic Nessus in the forum Tools 8 years, 5 months ago
Haven’t used it in anger yet (still beta, getting nowhere near production environments 😉 ). But from testing in the lab its a much cleaner interface, no empirical evidence but feels more responsive.
No additional functionality at the moment, but from listening to the weekly Tenable podcasts it seems that replacing existing functionality is…[Read more]
-
RoleReversal replied to the topic My Experience With Hackingdojo Ripped Off My Money in the forum Network Pen Testing 8 years, 5 months ago
@Yet wrote:
Well i can stop the course if i want & request for refund, there’s no need for people try to tell me i don’t have valid reasons to ask for my money back or request for refund.
Nobody can tell me my reasons is invalid cause i have a lot of reasons to stop the course, also everyone has their reasons to do what they do .You’re quite…[Read more]
-
RoleReversal replied to the topic My Experience With Hackingdojo Ripped Off My Money in the forum Network Pen Testing 8 years, 5 months ago
@Yet wrote:
Simply because i don’t want to write the exam & i want to stop i ain’t entitled to get refund my money?
If that’s all there is to it, I’m going to go with yes. It was YOUR decision to sign-up to the course, and YOUR decision not to take the exam. As others have stated, the criteria for moving through the ranks is well publicised and…[Read more]
-
RoleReversal replied to the topic Nessus vs. OpenVAS in the forum Tools 8 years, 5 months ago
I can’t comment on OpenVAS too much, got it running in a lab environment but haven’t really used in anger.
Placing technical issues to one side, if you’re providing a chargeable service some (rightly or wrongly, a debate for another day) will be more comfortable with a service backed up by a commercial organisation; and I have come across a…[Read more]
- Load More