Follow us
How To Detect Penetration Testers (Source Boston 2010)
Description:
This is the video of the presentation titled "How to Detect Penetration Testers" given by Ron Gula from Tenable Security at SOURCE Boston 2010. You can view the presentation here.
Abstract: How to Detect Penetration Testers, Ron Gula, Tenable Security
In this talk we will examine the problem of detecting authorized penetration testers from a variety of technical and political aspects. One on hand, we need to monitor and protect from many threats, but politically, we also don't want to have the pen test team make your security monitoring, your SIM or your NIDS look like a joke. Attendees will quickly realize that the tips and insights for making better use of firewall logs, netflow, systems logs and so on can and should be applied to monitoring for real bad guys as well.
Mr. Gula has more than 15 years of experience developing products such as Nessus and the Dragon IDS that effectively help organizations monitor their security. He also provides very informative and entertaining speeches about compliance, security monitoring and how to use security technologies in a more effective manner.
Abstract: How to Detect Penetration Testers, Ron Gula, Tenable Security
In this talk we will examine the problem of detecting authorized penetration testers from a variety of technical and political aspects. One on hand, we need to monitor and protect from many threats, but politically, we also don't want to have the pen test team make your security monitoring, your SIM or your NIDS look like a joke. Attendees will quickly realize that the tips and insights for making better use of firewall logs, netflow, systems logs and so on can and should be applied to monitoring for real bad guys as well.
Mr. Gula has more than 15 years of experience developing products such as Nessus and the Dragon IDS that effectively help organizations monitor their security. He also provides very informative and entertaining speeches about compliance, security monitoring and how to use security technologies in a more effective manner.
Tags: fun ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Comments:
Login to post a comment
Video Posted By
ST Course Videos
-
Defeating Getimagesize() Checks In File Uploads
-
Challenge 6: Digest Authentication Reloaded
-
Challenge 5: Digest Authentication Attack
-
Basic Authentication And Form Bruteforcing
-
Http Basic Authentication Attack (Easy)
-
Challenge 2: Http Form Attacks Reloaded
-
Http Verb Tampering Demo
-
Web Application Pentesting Course Introduction
-
Introducing Pentester Academy
-
Hack Of The Day 13: Remote Shellcode Launcher: Testing Shellcode Over A Network
-
Hack Of The Day 12: Pivots And Port Forwards In Scenario Based Pentesting
-
Hack Of The Day: Customizing Shellcode For Fun And Profit
-
Hack Of The Day: How Do I Run Untrusted Shellcode?
-
Securitytube Linux Assembly Expert Exam Format
-
[Slae] Writing An Custom Insertion Encoder
-
[Slae] Execve Shellcode Stack Method
-
[Slae] Shellcoding Basics
-
[Slae] Using Libc And Nasm
-
[Slae] Hello World In Assembly Language
-
[Slae] What Is Assembly Language?
