undefined | Better HN

0 pointstptacek6y ago0 comments

People do internal pentests even though everyone knows the pentesters will win; you still learn something from the experience.

0 comments

AmericanChopper6y ago

You’ll never be able to prevent privileged insiders, or their accounts, from being able to cause damage. But I have worked with organisations where internal tests were not able to compromise the most critical assets, and where the outcome of the tests was those assets become even more well protected. Which is really the best outcome you could be hoping for with these kinds of engagements, imo.

dmix6y ago

Of course, I was just being cute.

j / k navigate · click thread line to collapse

0 pointstptacek6y ago0 comments

People do internal pentests even though everyone knows the pentesters will win; you still learn something from the experience.

0 comments

AmericanChopper6y ago

dmix6y ago

Of course, I was just being cute.

j / k navigate · click thread line to collapse