The Ethical Hacker Network - Open Source Security Testing Methodology Manual

Latest Additions

Who's Online

EH-Net Donations

Google Ads

EH-Net News Feeds

Latest Additions

Book Recommendations

Ethical Hacker Community Forums

November 22, 2008, 08:10:36 AM

Welcome, Guest. Please login or register.
Did you miss your activation email?

News: ChicagoCon 2-Day Ethical Hacking Conference with MS Blue Hats Oct 31 - Nov 1. Tickets Only $100! www.chicagocon.com/content/view/103/51/

Ethical Hacker Community Forums > Ethical Hacking Discussions and Related Certifications > Network Pen Testing (Moderator: don) > Open Source Security Testing Methodology Manual

Pages: [1] Go Down

« previous next »

	Author	Topic: Open Source Security Testing Methodology Manual (Read 3689 times)
0 Members and 1 Guest are viewing this topic.

don

Editor-In-Chief
Administrator
Hero Member

Offline

Posts: 2347

Editor-In-Chief

Open Source Security Testing Methodology Manual

« on: November 22, 2005, 12:08:53 AM »

Some of you may find this interesting. The OSSTMM describes itself as:

The OSSTMM focuses on the technical details of exactly which items need to be tested, what to do before, during, and after a security test, and how to measure the results. New tests for international best practices, laws, regulations, and ethical concerns are regularly added and updated.

http://www.isecom.org/osstmm/

Let me know what you think,
Don


	Logged

CISSP, MCSE, CEH, Security+ SME

don

Editor-In-Chief
Administrator
Hero Member

Offline

Posts: 2347

Editor-In-Chief

Re: Open Source Security Testing Methodology Manual

« Reply #1 on: May 19, 2006, 10:18:27 AM »

Here's a couple other methodologies:

NIST 4-Stage Pen-Testing Guidelinehttp://csrc.nist.gov/publications/nistpubs/800-42/NIST-SP800-42.pdf

FoundStone's Pen-Testing Methodology
http://www.foundstone.com/index.htm?subnav=services/navigation.htm&subcontent=/services/as_pentest.htm

Anyone have other suggestions, have created their own or experience using these?

Don


	Logged

CISSP, MCSE, CEH, Security+ SME

Pages: [1] Go Up

« previous next »

Jump to:

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.

Try CBT Nuggets Free!

Recent Forum Topics

Tools : NetWitness Investigator is now free! (5) by ChrisG
Programming : Using Assembly to access locked files (5) by apollo
Other : New to Ethical Hacking? (2) by cleanwithit0607
Forensics : Working for the dark side (6) by pseud0
Malware : Military Bans Removable Media (8) by sgt_mjc
Programming : Exploits (5) by cleanwithit0607
CEH - Certified Ethical Hacker : MSS from EC-Council? (9) by BillV
Looking To Hire : Looking for a Security Intelligence and Analytics Specialist (0) by liztownsend
Malware : Microsoft to Offer Free Anti-malware Tool (8) by jason
Network Pen Testing : page action (3) by lovewadhwa
Tools : Metasploit 3.2 released (1) by RoleReversal
Mass Media : Movie: Untraceable (7) by jason
Hardware : DD-WRT FTW! (1) by jason
Hardware : DIY USB Keystroke Logger? (0) by jason
Oct 2008 - Scooby Doo and the Crypto Caper : [Article]-Scooby Doo and the Crypto Caper (4) by trolley
Forensics : It's time to get that data back! (4) by sgt_mjc
Forensics : Gaining experience... first steps (5) by sgt_mjc
News from the Outside World : OS with Highest Security Rating from NSA goes Commercial (3) by jason
Other : Microsoft Hyper-V Server 2008 Released, Free (3) by sgt_mjc
Book Reviews : The Art Of Exploitation (3) by apollo
Social Engineering : How to Run a Con (0) by jason
Social Engineering : History Channel's Secrets of Body Language (2) by jason
Social Engineering : Facial Expression Test (0) by jason
CEH - Certified Ethical Hacker : Howdy - study question/labs bootcamp etc. (3) by BillV
Other : PC geeks Inc. (0) by iSmith
Other : UK Data Protection Act (3) by RoleReversal
Other : Yahoo CEO Jerry Yang to Step Down (0) by don
Network Pen Testing : Backtrack 3 Install (2) by KrisTeason
Certification : 7 Types of Hard CISSP Exam Questions and How To Approach Them (4) by jason
CEH - Certified Ethical Hacker : new guy (1) by jason
Programming : Small Basic (2) by jason
Other : Where to start? (5) by jason
Certification : I need your advice connecting to IS certs and careers (3) by jason
News from the Outside World : Deleting your digital past (0) by jason
OSCP - Offensive Security Certified Professional : Next Up OSCP101 v2.0 (31) by jason
Forensics : Data Recovery (6) by jason
Tutorials : problem with use MSF (12) by geekyone
Book Reviews : Hacking Exposed, 5th Edition (5) by cleanwithit0607
Forensics : Looking for advice on pursuing forensics.. (3) by Ketchup
Tutorials : about Metasploit 3.1 plz help (4) by mr.Z

Support EH-Net by Buying all of your Amazon items using the search bar above. Try CBT Nuggets Free!

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.

Try CBT Nuggets Free!