The Ethical Hacker Network - Open Source Security Testing Methodology Manual

Latest Additions

EH-Net Login

Welcome Guest.

No account yet? Register

Who's Online
We have 42 guests online

Advertisement

You are here: Home

Ethical Hacking Discussions and Related Certifications

Network Pen Testing

Open Source Security Testing Methodology Manual

EH-Net

May 19, 2013, 06:20:38 AM

Welcome, Guest. Please login or register.
Did you miss your activation email?

News: Go back to The Ethical Hacker Network Online Magazine Home Page

Home

Help

Calendar

Login

Register

EH-Net > Ethical Hacking Discussions and Related Certifications > Network Pen Testing (Moderator: don) > Open Source Security Testing Methodology Manual

Pages: [1] Go Down

« previous next »

	Author	Topic: Open Source Security Testing Methodology Manual (Read 7894 times)
0 Members and 1 Guest are viewing this topic.

don

Editor-In-Chief
Administrator
Hero Member

Offline

Offline

Posts: 4165

Editor-In-Chief

WWW

Open Source Security Testing Methodology Manual

« on: November 22, 2005, 12:08:53 AM »

Some of you may find this interesting. The OSSTMM describes itself as:

The OSSTMM focuses on the technical details of exactly which items need to be tested, what to do before, during, and after a security test, and how to measure the results. New tests for international best practices, laws, regulations, and ethical concerns are regularly added and updated.

http://www.isecom.org/osstmm/

Let me know what you think,
Don


	Logged

CISSP, MCSE, CSTA, Security+ SME

don

Editor-In-Chief
Administrator
Hero Member

Offline

Offline

Posts: 4165

Editor-In-Chief

WWW

Re: Open Source Security Testing Methodology Manual

« Reply #1 on: May 19, 2006, 10:18:27 AM »

Here's a couple other methodologies:

NIST 4-Stage Pen-Testing Guidelinehttp://csrc.nist.gov/publications/nistpubs/800-42/NIST-SP800-42.pdf

FoundStone's Pen-Testing Methodology
http://www.foundstone.com/index.htm?subnav=services/navigation.htm&subcontent=/services/as_pentest.htm

Anyone have other suggestions, have created their own or experience using these?

Don


	Logged

CISSP, MCSE, CSTA, Security+ SME

Pages: [1] Go Up

« previous next »

Jump to:

Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com

Page created in 0.069 seconds with 24 queries.

Exclusive Deal

SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format! Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013

Polls

Compared to this year, 2013 will be:

	Great!
	Better.
	About the same.
	Little worse.
	FUBAR!

Recent Forum Topics

General Certification : CPT Practical Submission (0) by z28power4u
OSCP - Offensive Security Certified Professional : Class Scheduled 6/8 - Linux n00b (5) by MrTuxracer
Career Central : Starter cert? (0) by Alert
Web Applications : Nessus and Nikto (4) by Seen
Tutorials : Need guidance (7) by impelse
Malware : EICAR? (2) by SephStorm
Network Pen Testing : Cracking salted MD5 hash (4) by n37sh@rk
CEH - Certified Ethical Hacker : Passed my C|EH (3) by n37sh@rk
Mass Media : EC-council hacked, irony at his best? (0) by j0rDy
Web Applications : SQL Injection into an INSERT statement. (6) by eyenit0
Network Pen Testing : Solution for sipXtapi INVITE Message CSeq Field Header Remote Overflow (1) by m0wgli
Web Applications : dns (2) by H1t M0nk3y
Other : BSides Boston (0) by 3xban
Career Central : InfoSec in Central, FL (2) by tturner
Web Applications : Web vulnerability scanner (4) by H1t M0nk3y

EH-Net News Feeds
Latest Additions

Privacy Notice
for TDCC & All Properties

Advertisement

© 2013 The Ethical Hacker Network

Joomla! is Free Software released under the GNU/GPL License.