all InfoSec news
"Highest vulnerabilities" findings from pentesters are different from Rapid7's
July 2, 2023, 7:38 p.m. | /u/huyan147
cybersecurity www.reddit.com
Our company just has a pen testing performed by an external security auditing team. Their list of "Top 10 vulnerabilities" is much different from "the highest vulnerabilities" list by Rapid7 (our internal scanner). The 2 lists share only 2 vulnerabilities, the rest are completely different ones. The pen testing was a black box, their scan is non-credentialed. In contrast, our internal scanning is credentialed. I wonder which "top vulnerabilities" list should we focus our remediation on. Should we …
auditing cybersecurity external findings internal list lists pen pen testing rapid7 rest scanner security security auditing share team testing top 10 vulnerabilities
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Cyber Security Culture – Communication and Content Specialist
@ H&M Group | Stockholm, Sweden
Container Hardening, Sr. (Remote | Top Secret)
@ Rackner | San Antonio, TX
GRC and Information Security Analyst
@ Intertek | United States
Information Security Officer
@ Sopra Steria | Bristol, United Kingdom
Casual Area Security Officer South Down Area
@ TSS | County Down, United Kingdom