Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
From: Thomas Ptacek (tqbfmatasano.com)
Date: Fri Jul 11 2008 - 15:49:49 CDT
> > Specifically, to obtain the certification you will need to write a
> > buffer overflow from scratch within a certain time period. You will
> > first find the buffer overflow by reverse engineering a target program,
> > and then obtain a shell from it or execute a command. This is a hands-on
> > certification, not a paper test.
> Sounds like potentially a meaningful, if narrow, test.
Some of the most effective pentesters I've met would not be able to
pass this. This is the problem with all certifications.
I get the "joke" here, so don't take that as a criticism. Although you
should have made an acronym for MOV AX, AX work instead.
Thomas H. Ptacek // matasano security
read us on the web: http://www.matasano.com/log
Dailydave mailing list