Speaker : Amarendra Godbole

Aim of penetration testing (pen-testing) is to break into an application while closely approximating an attacker’s behavior. Typical approaches that rely heavily on the usage of security tools produce only tool-based results, and may limit the effectiveness.

In order to closely approximate an attacker’s tactics, more of a mental shift, knowledge about the application, and motivation are required. This session tries to bridge that gap, and aims to discuss advanced and sophisticated steps to make the pen-testing effort more effective, and optimize the skills of the pen-tester and the tools.

Starting with planning, recon, deciding the attack surface, tool selection, and final closure, advanced penetration testing will take your understanding about the application to a different level. Overall, these steps will assist in reasonable assessment of the security posture of an application..

This session on “Advanced Software Penetration Testing” will be presented at the 1st IndicThreads.com Conference On Software Quality Assurance and Software Testing to be held in Pune, India on 5,6 March 2010.Click here for a list of other Sessions @ The Conference

Leave a Reply

You must be logged in to post a comment.

preload preload preload