[Owasp-leaders] OSSTMM Version 3

Rogers, John M. John.Rogers at lfg.com
Wed Oct 16 15:24:46 UTC 2013

OWASP Leaders,


I was asked by an OWASP Member if we had any OWASP resources associated/familiar with OSSTMM Version 3.


The specific questions are:


"Has anyone outside of ISECOM used OSSTMM Version 3 as their primary framework in an assessment?  If so, were the changes from Version 2 to Version 3 significant in added value? Are there informed opinions/arguments making the case that the "rav" is more than just another entry in a large and always growing set of security metrics clamoring for attention?"


Version 3.02 of the OSSTMM is freely available at http://www.isecom.org/mirror/OSSTMM.3.pdf.  Newer versions are in draft form, but only available to paid subscribers.





John M. Rogers, CISSP
Senior Application Security Engineer
Lincoln Financial Group, 8801 Indian Hills Drive 8972, Omaha, NE 68114
Phone: Work: 402-361-7343, Cell: 402-536-0722
Email: John.Rogers at lfg.com
Web: www.lfg.com 

You're In Charge sm

██████ WearYellow, LIVESTRONG! <http://www.livestrong.org>  ██████


Notice of Confidentiality: **This E-mail and any of its attachments may contain
Lincoln National Corporation proprietary information, which is privileged, confidential,
or subject to copyright belonging to the Lincoln National Corporation family of
companies. This E-mail is intended solely for the use of the individual or entity to
which it is addressed. If you are not the intended recipient of this E-mail, you are
hereby notified that any dissemination, distribution, copying, or action taken in
relation to the contents of and attachments to this E-mail is strictly prohibited
and may be unlawful. If you have received this E-mail in error, please notify the
sender immediately and permanently delete the original and any copy of this E-mail
and any printout. Thank You.**
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20131016/fc1f86e1/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 3098 bytes
Desc: image001.jpg
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20131016/fc1f86e1/attachment.jpg>

More information about the OWASP-Leaders mailing list