Hi guys,

1. I was wondering if there is any way I can hire an experienced commercial hacker to attempt to hack into my new server?

2. I plan to do that after having the security tightened by RFXN or rack911. Any experience with these companies? Any other good alternatives?

Can search for C|EH Certified Ethical Hackers or as we know them by as White Hats of course. They are trained to use all "known" ways into a box and do it for a living. IMO, The BEST Job out there!!! :)
But they may not have the skills of a "Hands On" black hat doesnt care exploits anything leaving rootkits everywhere zombies running script kiddie.

Could also contact Joel Scambray through http://webhackingexposed.com/authors.html for a TOP dollar intrusion test.
Good Luck with your lock down :)

-Dave

Greetings:

The search tool on WHT can be a great way to see the experiences other customers of a given provider.

Thank you.

Originally posted by Roy@ENHOST
Hi guys,

1. I was wondering if there is any way I can hire an experienced commercial hacker to attempt to hack into my new server?

I may be able to set you up with several.

They are not really called experienced commercial hackers they are called security consultants.

Reminds me of this line from the Movie "Sneakers" (old):

"So, people pay you to break into places to see if people can break into their places".
"Hey, its a living".
"Not a very good one".

If you know what "Setec Astronomy" spells out to be please comment: I want to see if other people liked this movie. :P

The other common name for this is called penetration testing. Have you tried searching for that term?

Grab a nessus scanner :P

"Too Many Secrets"

Great movie.

penetration testing? would hate to type that into google. Lol

I would like to know the results when your done

Thanks Dave!
I heard of that book. I have no problem with hiring the author to do a penetration testing, but my wallet is complaining.

Originally posted by GHDave
Can search for C|EH Certified Ethical Hackers or as we know them by as White Hats of course. They are trained to use all "known" ways into a box and do it for a living. IMO, The BEST Job out there!!! :)
But they may not have the skills of a "Hands On" black hat doesnt care exploits anything leaving rootkits everywhere zombies running script kiddie.

Could also contact Joel Scambray through http://webhackingexposed.com/authors.html for a TOP dollar intrusion test.
Good Luck with your lock down :)

-Dave

I read all review I can about the companies i mentioned. Just wanted to sqeeze out all the resources I can find regarding penetration testing. Dave just mentioned something that I think cant be found in previous threads.

Originally posted by dynamicnet
Greetings:

The search tool on WHT can be a great way to see the experiences other customers of a given provider.

Thank you.

Cool. Do you have any documentation of your services?
Or just any postfolios of sites that you messed with in the past?
I have no problem signing an NDA for you to show me your portfolio.

Originally posted by Amdac
I may be able to set you up with several.

I was pleasantly surprised :
http://www.google.com/search?hl=en&ie=UTF-8&q=penetration+testing
Those adult SEOs are not doing their job.

"this is called penetration testing"

heh he said penetration

Originally posted by jbigelow
"Too Many Secrets"

Great movie.

Yes, A very great movie indeed.

"this is called penetration testing"

heh he said penetration


lol...how low can people go?

Originally posted by Roy@ENHOST

Cool. Do you have any documentation of your services?
Or just any postfolios of sites that you messed with in the past?
I have no problem signing an NDA for you to show me your portfolio.

I wasn't referring to myself specifically. :D I do however have a few friends that would be considered "ethical hackers". I can forward some info along if you like.

Seems like a waste of money to me. The truth is, you will never be 100% immune to attacks while the machine is plugged in to the internet. The only thing you can do is secure it the best way you can and then hope nothing happens... And of course, make daily backups, etc...

Originally posted by Morgant6911
Seems like a waste of money to me. The truth is, you will never be 100% immune to attacks while the machine is plugged in to the internet. The only thing you can do is secure it the best way you can and then hope nothing happens... And of course, make daily backups, etc...

That's the whole point.. making it as secure as possible. How is that a waste of time? Would you rather have your server 99% secure, or 25% secure?

Originally posted by Morgant6911
Seems like a waste of money to me. The truth is, you will never be 100% immune to attacks while the machine is plugged in to the internet. The only thing you can do is secure it the best way you can and then hope nothing happens... And of course, make daily backups, etc...

"Hoping that nothing happens" might not be the best way to run a web hosting company.

While you can't make anything 100% secure, you will lower the chances of your box getting hacked significantly, thus saving yourself a lot of headaches and lost revenue in the long run.

Boris

There are also a variety of instrusion testing tools you can use. Try to get a tool to test your site by yourself, first.

[hijack on]
Originally posted by whatever
lol...how low can people go?

low? was merely mocking the fact that would not be a fun search in a tongue in cheek fashion... fail to see how that is low... unless there is an alternate definition of the word that I have never encountered

Immature humor - that I will give you :-)
[/hijack off]