Many security professionals and sys-admins do not have a solid understanding of what a penetration assessment is. What does the penetration tester spend time on? What drives the penetration tester? How do they prioritize what they focus on during an engagement? How do I get the most value out of an engagement?
This presentation will help to answer many of these questions as well as to explain the methodology used by the Rapid7 Professional Services Team.
Joshua "Jabra" Abraham, Security Consultant, Rapid7
Josh joined Rapid7 in 2006 as a Security Consultant. Josh has extensive IT Security and Auditing experience and worked as an enterprise risk assessment analyst for Hasbro Corporation. Josh specializes in penetration testing, web application security assessments, wireless security assessments, and custom code development. He has spoken at BlackHat, DefCon, ShmooCon, The SANS Pentest Summit, Infosec World, SOURCE Barcelona, CSI, OWASP Conferences, LinuxWorld, Comdex and BLUG. In his spare time, he contributes code to open source security projects such as the BackTrack LiveCD, BeEF, Nikto, Fierce, and PBNJ. He is frequently quoted in the media regarding Microsoft Patch Tuesday and web application security by ComputerWorld, DarkReading and SC Magazine. Josh earned his Bachelor of Science degree in Computer Science from Northeastern University.