Re: Pentest Letter of Achievement/Certificate

From: John Kinsella (jlk@thrashyour.com)
Date: Tue Jul 12 2005 - 22:29:43 EDT

• Next message: Tibor Csonka: "Re: SQL injections and connections to a DB"
• Previous message: Bones: "Windows privelege escalation?"
• In reply to: blowfish 448: "Pentest Letter of Achievement/Certificate"
• Next in thread: blowfish 448: "Re: Pentest Letter of Achievement/Certificate"
• Reply: blowfish 448: "Re: Pentest Letter of Achievement/Certificate"
• Reply: R. DuFresne: "Re: Pentest Letter of Achievement/Certificate"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I think http://www.isecom.org/osstmm/ might cover what you're looking
for...

John

On Tue, Jul 12, 2005 at 10:52:42PM +0200, blowfish 448 wrote:
> Hi,
>
> any of you know if any 'standards' or accepted guidelines exist for a
> letter or certification
> of succesfull resistance to Penetration Testing/Vulnerability Assessment.
> Customers often
> demand to have a proof delivered by their Penetration Test service provider
> to show to their
> partners and customers.
>
> The idea of course is not to disclose sensitive information but to briefly
> describe
> the environment tested and how - according to which methodologies and the
> attack vectors
> tested for.
>
>
> Thanks in advance
>
>

• Next message: Tibor Csonka: "Re: SQL injections and connections to a DB"
• Previous message: Bones: "Windows privelege escalation?"
• In reply to: blowfish 448: "Pentest Letter of Achievement/Certificate"
• Next in thread: blowfish 448: "Re: Pentest Letter of Achievement/Certificate"
• Reply: blowfish 448: "Re: Pentest Letter of Achievement/Certificate"
• Reply: R. DuFresne: "Re: Pentest Letter of Achievement/Certificate"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:32 EDT