Open source security testing methodology
Submitted by Antony Marcano on Sun, 11/07/2004 - 22:49.
security testing
Security testing is often considered to be something of a 'black art'. Certainly, penetration testers are a special 'breed' of tester... for such security testing professionals and anyone building security testing into their Test Strategy, Pete Herzog's Open Source Security Testing Methodology Manual (OSTMM) is a very useful resource. A schematic of the methodologyis also available.
The latest version, in English or Spanish, can be found at http://www.isecom.org/projects/osstmm.shtml
The latest version, in English or Spanish, can be found at http://www.isecom.org/projects/osstmm.shtml