IWS - The Information Warfare Site
News Watch Make a  donation to IWS - The Information Warfare Site Use it for navigation in case java scripts are disabled


InfoSec: Network Security Testing / Penetration Testing


BugTraq
is a full disclosure moderated mailing list for the *detailed* discussion and announcement of computer security vulnerabilities: what they are, how to exploit them, and how to fix them.

Full-Disclosure - unlike bugtraq, this list serves no one except the list members themselves. We don't believe in security by obscurity, and as far as we know, full disclosure is the only way to ensure that everyone, not just the insiders have access to the information we need to survive.

NIST Special Publication 800-42 Guideline on Network Security Testing - Recommendations of the National Institute of Standards and Technology

Penetration Testing - this is a mailing list for the discussion of issues and questions about penetration testing and network auditing.

ProCheckUp's Mission is 'to provide state of the art information protection, to give impartial advice with trust and integrity'. ProCheckUp Ltd is a leading independent specialist security organisation that was formed to provide enterprise wide security solutions to the corporate market. The company has invented a revolutionary AI (artificial intelligence) based on security penetration testing technology - ProCheckNet. This technology is the ultimate security assessment system as it mimics the actions of sophisticated hackers.

SANS InfoSec Reading Room Penetration Testing - most of the computer security white papers in the Reading Room have been written by students seeking GIAC certification to fulfill part of their certification requirements and are provided by SANS as a resource to benefit the security community at large.