[Owasp-portland] Evaluating Penetration Testers

John Sieh JohnSieh at UmpquaBank.com
Mon Apr 19 15:55:52 EDT 2010

I think we can all agree both "VA" and "PT" are loaded terms with large
degree's of variance for each theoretical definition applied
Clearly discussing the finer points leads to lots of debate,
philosophical differences and so on, and obviously has been done many
times in the past, often on some of the more public facing e-mail lists


john sieh | network security engineer | umpqua bank |  t: 503.382.5416 |
giac: gsna, gcih, gcfw



From: owasp-portland-bounces at lists.owasp.org
[mailto:owasp-portland-bounces at lists.owasp.org] On Behalf Of wes
Sent: Monday, April 19, 2010 12:54 PM
To: James C. Bohem
Cc: owasp-portland at lists.owasp.org
Subject: Re: [Owasp-portland] Evaluating Penetration Testers

	There haven't been any replies... anyone out there? 

I'll chime in to at least point out that I am here in the audience. This
is all quite interesting to me and I hope to soak up enough information
by reading traffic here to further my overall goals and interests.
However, I have no real knowledge of security nor obscurity so I will
largely refrain from comment unless I have something relevant to

If someone wanted to give away security consulting in order to generate
list traffic, I would be a willing victim I mean participant.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-portland/attachments/20100419/653b6445/attachment.html 

More information about the Owasp-portland mailing list