Comment by 001spartan
10 years ago
Offensive security is not just breaking into computers. In the information security industry, it means demonstrating flaws in security in a way that will help your client/employer/whoever defend against these techniques better in the future.
I'd argue it's poorly thought out application of language and terminology, since thinking like the attacker and studying their methods has always been in the core of everything infosec. And the title already seprately includes penetration testing. It just sounds like "the best defense is a good offense". But I guess good terminology is too much to ask from the cyber-buzzword enthusiasts.
"Offensive" security predates "cyber" by a lot (see, for instance, USENIX WOOT), and I don't know a lot of vuln researchers who object to it. Unlike "cyber".