Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Pen-Test requirements

from [SD List] Network Security [Permanent Link]
Subject: Re: Pen-Test requirements
Date: Wed, 24 Jan 2007 10:56:16 +0100 (CET) 
Hi,

You should take a look on Open Source Security Testing Methodology
(OSSTMM). It enumerates things to do or not to [ link;
http://www.osstmm.org or http://www.isecom.org ]

Also, guys from vulnerabilityassessment.co.uk has a very good checklist
(called Pre Site Inspection Checklist)
http://www.vulnerabilityassessment.co.uk/Presite%20Inspection.html

Hope this helps you out.

Security-Database.com Team




I am chartered with having a connection pen-tested. I'm trying to
determine the requirements for a statement of work for outsourcing.

The objective of the pen-test is to validate technical controls that
prevent unauthorized access to and from our network.

Does anyone have a standard SOW for this type of testing?


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------






------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] 0trace - traceroute on established connections, Jon Oberheide
Next by Date:  Novell Password Cracking Issue, orwell6717
Previous by Thread:  Pen-Test requirements, bigsteff_itsec
Next by Thread:  Announcement: The Cross-site Request Forgery FAQ, bugtraq
Indexes:  [Date] [Thread] [Top] [All Lists]