Re: Penetration Testing

From: Pranay Kanwar (warl0ck@metaeye.org)
Date: Wed May 02 2007 - 03:18:56 EDT

• Next message: Wes Talbert: "Re: Can we say Back|Track best CD for a Penetration Test"
• Previous message: Aaron Peterson: "Re: [pen-test] Penetration Testing"
• In reply to: Farrukh Ahmed: "Penetration Testing"
• Next in thread: Claudio Broglia: "Re: Penetration Testing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Farukh,

I suggest you start with a methodology the two listed below are
good.

1. OSSTMM - http://www.isecom.org/osstmm/.
2. ISSAF - http://www.oissg.org/content/view/71/71/

Also take a look at the Security Technical Implementation Guides
http://iase.disa.mil/stigs/stig/index.html, in addition to
Security Configuration Guides
http://www.nsa.gov/snac/index.cfm?MenuID=scg10.3.1.

For the Tools see the http://sectools.org and
http://vulnerabilityassessment.co.uk/Penetration%20Test.html

Regards

warl0ck // MSG
http://www.metaeye.org

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------

• Next message: Wes Talbert: "Re: Can we say Back|Track best CD for a Penetration Test"
• Previous message: Aaron Peterson: "Re: [pen-test] Penetration Testing"
• In reply to: Farrukh Ahmed: "Penetration Testing"
• Next in thread: Claudio Broglia: "Re: Penetration Testing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:45 EDT