| To: | fleetscribbler@socket.net |
|---|---|
| Subject: | Re: Good Pentesting checklist |
| From: | Christian Martorella <laramies2k@yahoo.com.ar> |
| Date: | Wed, 28 Feb 2007 20:09:46 +0100 |
| Cc: | pen-test@securityfocus.com |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | pentest-list2@consult.net |
| Delivered-to: | mailing list pen-test@securityfocus.com |
| Delivered-to: | moderator for pen-test@securityfocus.com |
| Domainkey-signature: | a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com.ar; h=Received:X-YMail-OSG:Message-ID:Date:From:User-Agent:MIME-Version:To:CC:Subject:References:In-Reply-To:X-Enigmail-Version:Content-Type:Content-Transfer-Encoding; b=IC6pJ9/h1l/ZMbjgI6tKsOB+hdNvkEXOKETKetdt26UAJGwwIjWOiBhaiCdyFtqvu0VpDv4XzuWLQQikrR5SXrhlt2MwtYxv7tD8ipDsSWz/q8iSBGysmuJCnvfIHEtTlJPt4+gdK1KxMSuxAZB1XGyNVlKMFYUap2pStTpBqho= ; |
| In-reply-to: | <20070226220845.5C87B3799A@mf4.socket.net> |
| List-help: | <mailto:pen-test-help@securityfocus.com> |
| List-id: | <pen-test.list-id.securityfocus.com> |
| List-post: | <mailto:pen-test@securityfocus.com> |
| List-subscribe: | <mailto:pen-test-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:pen-test-unsubscribe@securityfocus.com> |
| Mailing-list: | contact pen-test-help@securityfocus.com; run by ezmlm |
| References: | <20070226220845.5C87B3799A@mf4.socket.net> |
| Resent-date: | Thu, 1 Mar 2007 08:59:13 -0700 (MST) |
| Resent-from: | pen-test-return-1078483663@securityfocus.com |
| Resent-message-id: | <20070301155913.AF644237B42@outgoing3.securityfocus.com> |
| Resent-sender: | listbounce@securityfocus.com |
| Sender: | listbounce@securityfocus.com |
| User-agent: | Thunderbird 1.5.0.9 (Macintosh/20061207) |
Hi, you could take a look at the "Penetration Testing framework 0.24" ,this would be a quick start for a checklist. http://www.vulnerabilityassessment.co.uk/Penetration%20Test.html And also you could take a look to the ISSAF (Information Systems Security Assessment Framework) http://www.oissg.org or OSSTM www.isecom.org they are methodologies for Security testing. Regards, Christian Martorella www.edge-security.com fleetscribbler@socket.net wrote: > Does anyone have a good pentesting checklist they would recommend? > Something to help me get organized, and away from using random > attack vectors and the kitchen sink approach. Thanks. > > > ------------------------------------------------------------------------ > This List Sponsored by: Cenzic > > Need to secure your web apps? Cenzic Hailstorm finds > vulnerabilities fast. Click the link to buy it, try it or download > Hailstorm for FREE. > > http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW > > ------------------------------------------------------------------------ > > > __________________________________________________ Preguntá. Respondé. Descubrí. Todo lo que querías saber, y lo que ni imaginabas, está en Yahoo! Respuestas (Beta). ¡Probalo ya! http://www.yahoo.com.ar/respuestas ------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------ |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: Good Pentesting checklist, jfvanmeter |
|---|---|
| Next by Date: | Re: Penetration Testing Framework 0.24 released, FocusHacks |
| Previous by Thread: | Re: Good Pentesting checklist, Barry Fawthrop |
| Next by Thread: | RE: Good Pentesting checklist, Jordan, Jason |
| Indexes: | [Date] [Thread] [Top] [All Lists] |