Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

RE: How to write a security vulnerability assessment consulting project

From: "Kaminski, Lorenz" <Lorenz.Kaminski () bdr de>
Date: Wed, 14 Oct 2009 08:49:31 +0200
Hi,

have a look at the OSSTMM (http://www.isecom.org/osstmm/). You should find most of answer you need there.

Kind regards

Lorenz Kaminski
Networking Engineer

Bundesdruckerei GmbH


-----Original Message-----
From: listbounce () securityfocus com
[mailto:listbounce () securityfocus com] On Behalf Of Kai
Sent: Saturday, October 10, 2009 1:21 PM
To: pen-test () securityfocus com
Subject: How to write a security vulnerability assessment
consulting project


Hi all guys,

Our security team is working in a security vulnerability
assessment project. The phase one of this project is security
vulnerability assessment consulting. But, it is the first
time, our team works as consultant, so it is hard to start
this phase. So, we have some some
concern:
- Which methodology can we use? Because, our customer need us
to present our methodology which we use in this project.
- Can we build the checklists to make reports? If yes, please
give us details about these checklists. Which documents can
we read to build these checklists?

--
Best regards,

Phạm Tùng Dương

--------------------------------------------------------------
----------
This list is sponsored by: Information Assurance
Certification Review Board

Prove to peers and potential employers without a doubt that
you can actually do a proper penetration test. IACRB CPT and
CEPT certs require a full practical examination in order to
become certified.


http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: