Legal Aspect of Pentesting / CyberCrime Treaty

From: Christoph Puppe <puppe@xxxxxxxxxxxxxxx>
Date: Wed, 27 Sep 2006 10:09:27 +0200

Salve,

in Germany we are about to implement the cybercrime treaty in local law
with the number § 202 c. This change will make the possession, trafficking,
making available and producing of tools with the *intention* for hacking
and snooping traffic an offense punishable with up to a year in prison.

My questions for the list:

# does your country has implemented this treaty as well?
# what was your experience?

In my understanding, if we may not publish exploits to the web in general
anymore, we need new ways to trade them. The bad guys will do this as they
have always done. Now the professional pentesters need a B2B platform to
get this tools of the trade. The AV guys have done this right from the
start, with closed groups for exchange of new malware.

In the hope for a fun discussion!

--
Mit freundlichen Grüßen

Christoph Puppe
Security Consultant

We secure your business.(TM)
_______________________________________________________

HiSolutions AG Phone: +49 30 533289-0
Bouchéstrasse 12 Fax: +49 30 533289-99
D-12435 Berlin Internet: http://www.hisolutions.com
____________________________________________________

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

Follow-Ups:
- Re: Legal Aspect of Pentesting / CyberCrime Treaty
  - From: Jerome Athias

Prev by Date: Re: NULL session tools Linux
Next by Date: RE: Old @Stake Tools
Previous by thread: Implication of forced http GET request (Web App PT)
Next by thread: Re: Legal Aspect of Pentesting / CyberCrime Treaty
Index(es):
- Date
- Thread

Relevant Pages

Re: Anonymize internet access
... run TOR if you want to risk trafficking that. ... >I am looking for options to anonymize and secure all the internet access and as there are a whole bunch of options i thought some here may have experience and would like to share. ... >What about open tools, like TOR? ...
(Security-Basics)
Re: Legal Aspect of Pentesting / CyberCrime Treaty
... in Germany we are about to implement the cybercrime treaty in local law ... we need new ways to trade them. ... Cenzic Hailstorm finds vulnerabilities fast. ...
(Pen-Test)