Free Open-Source vs. Commercial Security Tools? 234
sahirh asks: "I work as a penetration tester and recently started writing a whitepaper on the benefits of free, open-source security tools over commercial tools. Through my own experiences, I've found that many free tools such as Nessus and Kismet are more reliable and have better features than expensive commercial alternatives like ISS Internet Scanner or Airopeek. I've also noticed that tools like Ettercap have no commercial alternative. Further, the flexibility offered by the open-source nature of such tools is a great benefit. I'd like to ask for Slashdot's experiences and opinions on why you don't need to spend thousands of dollars on an expensive tool to perform a professional security assessment." Update: 02/07 11:15pm EDT by C : Thanks to all who wrote in to let us know the proper URL to the Kismet site.
I want his job (Score:5, Funny)
I have no joke here, I just like saying, I work as a penetration tester ...
I have a similar job. (Score:4, Funny)
That's your day job... (Score:5, Funny)
Re:I want his job (Score:4, Funny)
What a pile of shit? (Score:5, Funny)
I know Microsoft readily accepts monetary responsibility for their products being crap and causing crashes, viruses and trojans in my system.
In fact, Bill and Steve cut me a check weekly.
Re:I want his job (Score:1, Funny)
Re:Accountability (Score:2, Funny)
Re:Huh? (Score:5, Funny)
You want to work as a penetration tester? (Score:2, Funny)
Re:Hmmm (Score:2, Funny)
You're new here, right?
Re:Accountability (Score:1, Funny)
Docmentation (Score:4, Funny)
"I work as a penetration tester..." (Score:3, Funny)
Interesting Business Card (Score:3, Funny)
Re:Docmentation (Score:3, Funny)
I'm thinking of writing a how-to for "penetration testers". It'll be titled "Locating Unprotected Backdoor Entrances" or more aptly, "Lube"
Don't forget a section on avoiding Trojans. Although they sometimes help with L.U.B.E., they can often get in the way of a successful test.