[Owasp-testing] OSSTMM manual
daniel.cuthbert at owasp.org
Thu Jan 18 21:13:44 EST 2007
the OSSTMM has way too much waffle included imho, when Mark and I
originally did ver 1, we agreed on less waffle, more meat
On 19 Jan 2007, at 06:55, Eoin wrote:
> The OSSTMM manual covers more than just App Sec.
> but some areas of interest would be :
> Security Metrics
> Legal Penetration Testing Checklist
> Competitive Intelligence
> maybe we should consider new sections after this initial release.
> say release 2.1?
> Also the metrics data/info can be ref'ed from the owasp metrics
> project and the guys from that project in some manner?
> I also think we should stay away to a degree from academia/theory
> and stay a little more hands on in the testing guide?
> what ya all think?
> Eoin Keary OWASP - Ireland
> Owasp-testing mailing list
> Owasp-testing at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-testing