| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 1 Jan 2008 22:18:38 -0800 From: coderman <coderman@...il.com> To: reepex <reepex@...il.com> Cc: full-disclosure@...ts.grok.org.uk, Andre Gironda <andreg@...il.com> Subject: Re: [Professional IT Security Providers - Exposed] QuietMove ( D - ) On Jan 1, 2008 8:51 PM, reepex <reepex@...il.com> wrote: > ... > So you list 5 tools they use then mention they modify a javascript > library... So basically they use automated tools and are former web > developers ... sound pretty hardcore this is sufficient skill for lucrative security audit / validation testing in the corporate / gov world. i don't think anyone would call that 'hardcore' exploit / pentest / redteam ability... are you in it for money or love? this changes the aspect entirely. the majority of security services paid for by these organizations is routine application of accepted industry guidelines as defined by usually bulky and cumbersome committees of varied competence and efficacy... this, and the complete lack of rigor / utility of secreview's sewaqe writing, is why i could care not even half a mouse's shit less about any of these reviews. please shut the fuck up secreview. kthx _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists