Best ROI Combination - Metasploit & Training

[Arch Angel <arch3angel () gmail com>]

Good Afternoon Everyone,

Our company is reviewing vulnerability management suites and Metasploit for
validation and penetation testing.  Right now we are leaning towards
Rapid7, but would like others opinions on Qualys, McAfee, nCircle, and
Lumension.  Rght now Rapid7 wants to sell us Nexpose with Metasploit Pro
and training.  I don't believe this will have the best ROI.  I believe that
we could purchase NexPose, use Metasploit Community, and go to SANs for the
training.  I believe this will be less expensive and be an overall better
choice in the long haul.

If SANS is choosen what courses would be the best over all for this project?

My opinion are these courses, in order:

     SEC560: Network Penetration Testing and Ethical Hacking
     SEC617: Wireless Ethical Hacking, Penetration Testing, and Defenses
     SEC542: Web App Penetration Testing and Ethical Hacking

What are your opinions?

Thanks All!

Robert
(arch3angel)

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com