RE: [Packet-ninjas-syn-k1ck] Anyone know CENZIC?



Yeah I know about those guys.

I would have to say out of all the companies I have talked with in the
last 5 years CENZIC has to by far be the rudest bunch of people I have
ever dealt with.

I don't know anyone that has used them for a pentest, but from the brief
experience I have had with them over the phone they don't deserve my
business, nor the business of any of my friends.

I have yet to meet one of their pentesters at any conferences in the
last 3 or 4 years or met any of their pentesters on any chat rooms or
mailing lists.

About all I know is they are insulting, arrogant, and somehow believe
they can cold call everyone and their mom that posts to any security
mailing list on the net.

On a lighter note they do have a cool sql injection tool that I believe
was written by Greg Hogland.
All in all if your looking for a good pentest company I can recommend
the following people.

- sensepost. http://www.sensepost.com
- sm4rt. http://www.sm4rt.com - you won't find too much on their
site but if you look around the net these guys contribute a great deal
to the community. (eg. Check out owasp.org)

I cannot however recommend cenzic purely by the way they treat potential
customers.

-Daniel Clemens

-----Original Message-----
From: packet-ninjas-admin@xxxxxxxxxxxxxxxxxxxxxxxx
[mailto:packet-ninjas-admin@xxxxxxxxxxxxxxxxxxxxxxxx] On Behalf Of Gary
Warner
Sent: Thursday, March 30, 2006 4:14 PM
To: Packet Ninjas
Subject: [Packet-ninjas-syn-k1ck] Anyone know CENZIC?

Cold call today from CENZIC. Claim to be a Penetration Testing company
and web application security testing company.

Anyone heard of them or have experience with them?



Thanks,

_-_
gar
_______________________________________________
Packet-ninjas mailing list
Packet-ninjas@xxxxxxxxxxxxxxxxxxxxxxxx
http://birmingham-infragard.org/mailman/listinfo/packet-ninjas


-----------------------------------------
Confidentiality Notice: This e-mail communication and any
attachments may contain confidential and privileged information for
the use of the designated recipients named above. If you are not
the intended recipient, you are hereby notified that you have
received this communication in error and that any review,
disclosure, dissemination, distribution or copying of it or its
contents is prohibited. If you have received this communication in
error, please notify me immediately by replying to this message and
deleting it from your computer. Thank you.


------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
As attacks through web applications continue to rise, you need to proactively
protect your applications from hackers. Cenzic has the most comprehensive
solutions to meet your application security penetration testing and
vulnerability management needs. You have an option to go with a managed
service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm).
Download FREE whitepaper on how a managed service can help you:
http://www.cenzic.com/forms/ec.php?pubid=10025
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request@xxxxxxxxxx
------------------------------------------------------------------------------