Home page logo

pen-test logo Penetration Testing mailing list archives

OSSTMM workshop
From: "pete" <pete () ideahamster org>
Date: Sun, 21 Oct 2001 12:32:24 +0200

The Open Source Security Testing Methodology Manual at
http://www.ideahamster.org/ is being presented in workshops from Ideahamster
and is seeking sponsors worldwide to help promote the security testing

I have said before (but for the first time here) that I will assist and
conduct "Understanding the OSSTMM" workshops, a moderately high-level
course, to explain the structure, organization, and benefits of the OSSTMM
pending sponsorship of location and travel costs.  I will not charge for
this presentation.  Generally it is scheduled with breaks inbetween and a
Q&A at the end of each section or the presentation.  Language adaptation is
quite possible.

I will be conducting the next workshop in London on November 1st.  This will
be sponsored by Interrorem and Unipalm.  This workshop is free.  Contact
Russ Spooner at info () interrorem com if you are interested. See
http://www.interrorem.com and http://www.unipalm.co.uk/events.html#osstmm
for contact details.

The next workshop will be in Barcelona, in Spanish.  I currently have no
clear details on date-- we had discussed the third week in November.
COntact them for more details.  This workshop is free.  GFT Iberia of the
Deutsche Bank Group will sponsor the workshop and can be reached at
http://www.gft.com or write them at info.emagineiberia-gft () db com 

This high-level, four-hour workshop covers background information into the
most widely used and accepted security methodology and the successful
application of it.  Detailed explanations about the structure and use of the
methodology are the focus of the workshop while defining the standards in
security testing and what constitutes a "thorough" security test.  This
workshop demonstrates through presentation and example how the OSSTMM takes
security testing far beyond the networked computer systems and into areas
such as marketing, human resources, and the executive boardroom.

The workshop describes not just the security testing methodology but how it
works, how it is to be used, and why it has been designed as such.  Details
from Pete Herzog, the creator, and other key contributors makes this
workshop highly informational beyond just that which one can download and
read from the open source standards site www.ideahamster.org.

Attendance is interesting for anyone who is involved in managerial decisions
of an organization and is concerned about their security or isn't sure if
security really is a concern yet.  It is pertinent for anyone directly
involved with security testers or auditors whether they are an in-house team
or contracted.  Participants do not have to have previous security knowledge
or training.

Topics covered will be:

?       applications of security testing and the OSSTMM

?       testing and analysis concepts

?       using and understanding the OSSTMM

?       calculating RAVs

?       understanding the modules, tasks, and the expected results of a
complete security test

If you or your organization would like to sponsor a workshop, please contact
me at workshop () ideahamster org   We can schedule a time and place and I will
help with the details.


This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:

  By Date           By Thread  

Current thread:
  • OSSTMM workshop pete (Oct 21)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]