SANS Penetration Testing: Monthly Archives: Feb 2012

Mobile App Permissions and Choice

[Editors note: The inimitable Josh Wright has been working his patooties off on a brand-new SANS course, SANS Security 575, Mobile Device Security and Ethical Hacking. I have to say, this is the most excited I've been about a new SANS course in years. Josh has gone all Willie-Wonka on us for several months as … Continue reading Mobile App Permissions and Choice


Maximizing Value in Pen Testing

[Editor's note: Here is an article I wrote for PenTest Magazine on how penetration testers can structure their work and its results to provide a lot more value to target organizations. We've used these principles on penetration tests and ethical hacking engagements in companies where I've worked with really positive impact, and I hope you … Continue reading Maximizing Value in Pen Testing