Penetration Testing mailing list archives
Re: How to write a security vulnerability assessment consulting project
From: Miguel Tubía <migueltubia () gmail com>
Date: Thu, 26 Nov 2009 11:00:51 +0100
Hi! you can check ISSAF too: http://www.oissg.org/downloads/issaf-0.2/index.php Regards, Miguel 2009/10/16 Nikhil Wagholikar <visitnikhil () gmail com>:
Hello Kai, Like OSSTMM, you can also have a look at OWASP. Link: http://www.owasp.org/ --- Nikhil Wagholikar Practice Lead | Security Assessments & Digital Forensics Network Intelligence India Pvt. Ltd. [NII Consulting] Web: http://www.niiconsulting.com/ Comprehensive Information Security Training http://www.iisecurity.in/courses/Training%20Calendar.html 2009/10/10 Kai <phamtungduong () gmail com>Hi all guys, Our security team is working in a security vulnerability assessment project. The phase one of this project is security vulnerability assessment consulting. But, it is the first time, our team works as consultant, so it is hard to start this phase. So, we have some some concern: - Which methodology can we use? Because, our customer need us to present our methodology which we use in this project. - Can we build the checklists to make reports? If yes, please give us details about these checklists. Which documents can we read to build these checklists? -- Best regards, Phạm Tùng Dương ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
-- Miguel Tubía www.zero-day.info ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Re: How to write a security vulnerability assessment consulting project Miguel Tubía (Nov 30)