AppSec Blog: Tag - pentesting

Response: Pentesting Coverage

The person I had the IM discussion with was Daniel Miessler. He responded in his own blog, and sent me the excerpt below as a response. Thanks for the offline and online comments to far. Certainly an interesting topic to discus! Continue reading Response: Pentesting Coverage

Pentesting: Do you need "coverage" ?

Is a pentest done after you got root? Or is this just the start of finding even more vulnerabilities? In my opinion, a pentest should aim at finding as many vulnerabilities as possible. Continue reading Pentesting: Do you need "coverage" ?