fsebugoutzone.org:9999

       Post AWetUetPVRlAdoHuQS by mensrea@freeradical.zone
 (DIR) More posts by mensrea@freeradical.zone
 (DIR) Post #AWec0tOdJrEhiO73E8 by tek@freeradical.zone
       2023-06-13T16:24:07Z
       
       0 likes, 0 repeats
       
       I love working with the pentester we&#39;ve hired this year. There&#39;s a good chance we’ll meet up at DEF CON, where he&#39;s spoken before.And I think he likes working with us. I’ve given him a ton of information about how our stuff works, and vowed to be an open book to him. If the end result is that he can’t find a way to attack us, I want it to be because he had all the information an attacker could possibly want and we&#39;re still solid.Seriously, pen tests are fun.
       
 (DIR) Post #AWeelLIK7tVfT8REbA by mensrea@freeradical.zone
       2023-06-13T16:55:01Z
       
       0 likes, 0 repeats
       
       @tek not when the report you get is basically just &quot;nope, didn&#39;t find anything. you&#39;re good.&quot;
       
 (DIR) Post #AWesc9mUxhUKVs4B1s by tek@freeradical.zone
       2023-06-13T19:30:17Z
       
       0 likes, 0 repeats
       
       @mensrea Yeah, you hope they find *something*, or at the very least can show you what they tried.
       
 (DIR) Post #AWetUetPVRlAdoHuQS by mensrea@freeradical.zone
       2023-06-13T19:40:12Z
       
       0 likes, 0 repeats
       
       @tek yeah. saw one for our PCI environment and there was no detail about what was tried or how it was tried. apparently for compliance it&#39;s good enough but as a useful tool to the business it was a wast of money
       
 (DIR) Post #AWevEs7YkwRqwVVRQG by tek@freeradical.zone
       2023-06-13T19:59:47Z
       
       0 likes, 0 repeats
       
       @mensrea That&#39;d be frustrating. We&#39;re not just doing this to check a box. We genuinely want to know if there&#39;s something we could be doing better.
       
 (DIR) Post #AWevRo3jAXuw6rshnM by mensrea@freeradical.zone
       2023-06-13T20:02:01Z
       
       0 likes, 0 repeats
       
       @tek i&#39;m trying to get folk to a &#39;do it right and compliance will happen&#39; mindset but it&#39;s taking a minute
       
 (DIR) Post #AWf42jf3Hb9ookSYiG by eviljarred@waytoomuch.info
       2023-06-13T21:38:20Z
       
       0 likes, 0 repeats
       
       @tek teams that aren’t open and transparent with the testers they’ve hired are wasting their money. Great attitude.
       
 (DIR) Post #AWfBCupXJJjg26AHvU by tek@freeradical.zone
       2023-06-13T22:58:44Z
       
       0 likes, 0 repeats
       
       @eviljarred Right? It’s like lying to your doctor. Congratulations: you got a fake good bill of health.