Experts struggle to define offensive security

Experts struggle to define offensive security

Is offensive security or 'hacking back' a viable cyberdefense tactic? RSA Conference 2013 experts struggled to define the terms, never mind the rol...
MORE HIGHLIGHTS

Validating Web app security: Pen test or code review?

For Web application security testing, if cash is tight, should a penetration test top an application code review? Michael Cobb explains his choice.
Utilize security flaws in malicious RATs for defense

Nick Lewis discusses how to learn from RAT security flaws not only for defense, but also to find out more about attackers via offensive security.
B-Sides: Is there value in penetration testing?

At Security B-Sides San Francisco, Brett Hardin asked why organizations hire penetration testers and assessed the value of penetration testing.

Security Testing and Ethical Hacking

Email Alerts

Register now to receive SearchSecurity.com-related news, tips and more, delivered to your inbox.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

How to use hping to craft packets

A packet crafting tool that's been around for a long time, hping can be used to test if ports are open, as well as for firewall testing. Learn how to use hping in this tutorial. Tip
What to do with network penetration test results

It takes a lot of time and effort to plan and conduct an enterprise network penetration test, but the work doesn't stop there. Contributor David Meier explains how to conduct an analysis of pen testing results. Tip
Screencast: BackTrack 4 offers an arsenal of penetration testing tools

Peter Giannoulis of TheAcademyPro.com and TheAcademyHome.com demonstrates BackTrack 4, the final version of the venerable pen-testing live Linux-based CD distribution. Tip
Screencast: Samurai offers pen-testing nirvana

Peter Giannoulis of The AcademyPro and The Academy Home demonstrates the Samurai Web Testing Framework, a free, live Linux distro pre-configured to function as a stand-alone Web pen-testing environment. Tip
Cracks in WPA? How to continue protecting Wi-Fi networks

German researchers recently described a Wi-Fi Protected Access (WPA) flaw that seemed to put the security of the popular wireless protocol in question. Network security expert Mike Chapple explains the vulnerability, but argues that the standard defe... Tip
Screencast: Collecting metadata with Metagoofil

Peter Giannoulis explains how Metagoofil, an information gatherer that extracts metadata from public documents, can be extremely valuable when investigating a target network. Tip
Screencast: How to use Wikto for Web server assessment

Peter Giannoulis demonstrates what kinds of website and Web server information can be found using the free Wikto tool. Tip
Screencast: Penetration testing with Metasploit

Peter Giannoulis of Bones Consulting demonstrates how the tool can be used to test commercial and custom-made applications, servers and operating systems. Tip
Google hacking exposes a world of security flaws

In this tip, contributor Scott Sidel examines Goolag, a open source security tool that assists security pros in finding flaws in websites through Google hacking. Tip
Inside application assessments: Pen testing vs. code review

Learn the advantages and limitations for two of the most popular application security offerings: penetration testing and code review. Tip

Latest Headlines

Featured

E-Books

E-Zines

E-Handbooks

Topics

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Answers

Ask a Question

Research Library

Product Demos

Resource Centers

Blogs

MORE HIGHLIGHTS

Security Testing and Ethical Hacking

Email Alerts

More from Related TechTarget Sites