.

Open Source Security Testing Methodology Manual

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Tue Nov 22, 2005 1:08 am

Open Source Security Testing Methodology Manual

Some of you may find this interesting. The OSSTMM describes itself as:

The OSSTMM focuses on the technical details of exactly which items need to be tested, what to do before, during, and after a security test, and how to measure the results. New tests for international best practices, laws, regulations, and ethical concerns are regularly added and updated.

http://www.isecom.org/osstmm/

Let me know what you think,
Don
CISSP, MCSE, CSTA, Security+ SME
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Fri May 19, 2006 10:18 am

Re: Open Source Security Testing Methodology Manual

Here's a couple other methodologies:

NIST 4-Stage Pen-Testing Guidelinehttp://csrc.nist.gov/publications/nistpubs/800-42/NIST-SP800-42.pdf

FoundStone's Pen-Testing Methodology
http://www.foundstone.com/index.htm?sub ... entest.htm

Anyone have other suggestions, have created their own or experience using these?

Don
CISSP, MCSE, CSTA, Security+ SME

Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 2 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software