cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
rslade
Influencer II

"Crowdsourced" pen-testing?

OK, what's the difference between crowdsourced pen-testing and just standing there saying "hit me"?


............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
1 Reply
Early_Adopter
Community Champion

I think there is a model, some traceability, RoE etc for HackerOne(which seems to be the Uber of pen test companies - but you only pay if they get you there), doubt gov, sneakey sneaky beakies etc will be able to use them... and isn’t the “hit me”covered by having a service up, users browsing, having some capital/value or being of interest to one or more sides aforementioned sneaky beakies?