for those about to rock, we salute you:

AKA : erimin
Email : erimin@yahoo.com
Location : Malaysia
Age : Who wants to know?

Want-To-Meet List:

Eddie Vedder ( Pearl Jam )
Steven Gerrard ( Liverpool FC )
Linus Torvalds ( Linux Creator )
Angelina Jolie ( she r0x ! )

Want-To-Go List:
Lollapalooza
Seattle USA
Woodstock Festival

Chat :





Links:


Ah Ros
Bennar
Donz da Man
Wing Loon
Simon & Jun
Efun




ads on blogs

PPP Direct

Archives

  • July 2005
  • August 2005
  • September 2005
  • December 2005
  • January 2006
  • February 2006
  • March 2006
  • April 2006
  • May 2006
  • June 2006
  • September 2006
  • October 2006
  • November 2006
  • December 2006
  • March 2007
  • April 2007
  • May 2007
  • June 2007
  • July 2007
  • August 2007
  • September 2007
  • October 2007
  • November 2007
  • December 2007
  • January 2008
  • February 2008
  • March 2008
  • April 2008
  • May 2008
  • June 2008
  • July 2008

    		•   

    Wednesday, December 19, 2007

    Pen-Test

    It’s raining and gloomy out there. I’m feeling pretty jaded right about now. I've been working for like what, errmm... 8 years? yah somewhere there. I personally think the most memorable job would be as a penetration tester. I’m sure a lot of you have not heard about penetration tester. Some of them call themselves pen-tester, some Tiger, some white-hat hacker, whatever. I used to work for this UK company as Penetration Tester ( also known as Hacker ). Our customers are all English companies and our job is to hack in to their system / servers / etc , write a report on how we got in, propose solutions / recommendations to enhance customer's security, play Warcraft, sleep and drink lotsa coffees. Penetration testers and used car salesmen have virtually nothing in common - except that both may end up giving you something other than what you expected.

    When people asked about my profession, I would politely answer them "I am doing penetration testing" and they would go "huh?! wtf? u "penetrate" girls everyday ah?". So the next time if someone tells you "hey im doing pen-test" or "im a penetration tester", he / she is not a pornstar or involves in the porn industry in any way. Here's what Mr. Wiki has to say :

    Penetration test
    _____________
    From Wikipedia, the free encyclopedia

    A penetration test is a method of evaluating the security of a computer system or network by simulating an attack by a malicious user, known as a cracker (though often incorrectly referred to as a hacker). The process involves an active analysis of the system for any potential vulnerabilities that may result from poor or improper system configuration, known and/or unknown hardware or software flaws, or operational weaknesses in process or technical countermeasures. This analysis is carried out from the position of a potential attacker, and can involve active exploitation of security vulnerabilities. Any security issues that are found will be presented to the system owner together with an assessment of their impact and often with a proposal for mitigation or a technical solution. The intent of a penetration test is to determine feasibility of an attack and the amount of business impact of a successful exploit, if discovered.

    I am no longer working as a professional pen-tester and currently selling eggs at market. Amen.

    [3:53 AM]
       
       
    Google