Dennis Fisher talks with HD Moore, the founder of the Metasploit Project and the chief security officer at Rapid7, about the evolution of Metasploit, the difficulty of client-side exploitation in the age of DEP and ASLR and the decision on when to publish an exploit.
*Podcast audio courtesy of sykboy65
Anonymous on
Art tho it may be, the pen-test in but only one small facet of the IT management process. Scanned and Fully-patched are still highly susceptible to all matter of threats and misuse. Elevating the pen-test to art form, which by itself won't keep a network fully secure, it akin to milking a cow with satin gloves and claiming product is silky smooth.