Explore a comprehensive conference talk on revitalizing penetration testing practices to enhance their value. Delve into the evolving landscape of information security, examining how penetration testers are perceived and strategies to expand their role beyond testing. Learn about essential tools, knowledge application, and the importance of scoping and source code analysis. Discover techniques for improving timelines, fostering collaboration, and increasing flexibility in penetration testing processes. Gain insights on effective knowledge transfer, reporting methodologies, and addressing common concerns. Understand the significance of making findings consumable, initiating meaningful conversations, and identifying appropriate resources. Elevate your penetration testing approach to deliver maximum value in today's dynamic cybersecurity environment.
Overview
Syllabus
Introduction
What is Penetration Testing
The Future of Information Security
How we are perceived
Being more than a tester
Application and Network
Tools
Knowledge
Application
Scoping
Source Code
Info Increase Timeline
Collaboration
Getting More Out There
Flexibility
Knowledge Transfer
Reporting
Instances vs Findings
Common Concerns
Make it consumable
Crosssite scripting
Conversation starters
Dont return
Its more than testing
Identifying the right resources
