Penetration Testing mailing list archives
Re: Penetration testing scope/outline
From: "Nathan Sportsman" <nathan () praetoriansolutions com>
Date: Tue, 5 Oct 2004 11:56:48 -0500 (CDT)
You can use the OSSTMM as a baseline and then customize and reduce according to the scope of your project. http://isecom.securenetltd.com/osstmm.en.2.1.pdf Make sure that the scope encompassing the project is agreed by both you and the client through an SLA. If you need an example of a post report, let me know and I'll be happy to send you one that we use at Praetorian. Good Luck, Nathan Sportsman Praetorian Security Solutions
Anyone have any documents they are willing to share on the scope of work for a pen-test? I have looked online but was unable to find any available documentation. If anyone could provide me with a some links or documentation outlining a pen-test/network audit it would be greatly appreciated. ------------------------------------------------------------------------------ Internet Security Systems. - Keeping You Ahead of the Threat When business losses are measured in seconds, Internet threats must be stopped before they impact your network. To learn how Internet Security Systems keeps organizations ahead of the threat with preemptive intrusion prevention, download the new whitepaper, Defining the Rules of Preemptive Protection, and end your reliance on reactive security technology. http://www.securityfocus.com/sponsor/ISS_pen-test_041001 -------------------------------------------------------------------------------
------------------------------------------------------------------------------ Internet Security Systems. - Keeping You Ahead of the Threat When business losses are measured in seconds, Internet threats must be stopped before they impact your network. To learn how Internet Security Systems keeps organizations ahead of the threat with preemptive intrusion prevention, download the new whitepaper, Defining the Rules of Preemptive Protection, and end your reliance on reactive security technology. http://www.securityfocus.com/sponsor/ISS_pen-test_041001 -------------------------------------------------------------------------------
Current thread:
- Penetration testing scope/outline Billy Dodson (Oct 05)
- Re: Penetration testing scope/outline Jose Maria Lopez (Oct 05)
- RE: Penetration testing scope/outline Chuck Fullerton (Oct 05)
- Re: Penetration testing scope/outline josh (Oct 05)
- Re: Penetration testing scope/outline Nathan Sportsman (Oct 05)
- Re: Penetration testing scope/outline JM (Oct 05)
- Re: Penetration testing scope/outline Anders Thulin (Oct 06)
- Re: Penetration testing scope/outline robert (Oct 08)
- RE: Penetration testing scope/outline Chuck Fullerton (Oct 08)
- Re: Penetration testing scope/outline Anders Thulin (Oct 08)
- RE: Penetration testing scope/outline Chuck Fullerton (Oct 08)
- RE: Penetration testing scope/outline Tate Hansen (Oct 08)