Quote:
| Originally Posted by finbar.taylor Here is a very good link, would have posted yesterday but need to clarify the clearance on it but it's fine it's public.
The main point not in this guide is why are you testing?
This doc is aimed at .Gov environmentso has standards to adhear to, These sytandards cost money!
You can find cheeper but you could well be taking their word for how good they are.
Quinetic are suposedly the second best in the UK with NISCC coming first.
Quinetic will cost the earth and NISCC only do .gov.
Alnet were talking about it a while ago maybe worth talking with Kevin see what he can offer?
Fin |
NTA were recommended to me by a couple of the UK Banks. They use them for their Pen testing and also website hack testing.
They do either one off tests or you can contract them to test quarterly, to take into account any firewall changes you make or configuration changes to your web applications.
As you say, Qinetiq are mega-expensive. Although they use the same tools that the guys at the doughnut in Cheltenham use
