Security Basics mailing list archives
Re: Penetration testing report,
From: venkataramanan.as () gmail com
Date: 9 Sep 2006 11:55:09 -0000
John, Scanning and patch assessment is just vulnerability assessment. Penetration testing is one step ahead of this where the vulnerabilities identified in vulnerability assessment are exploited for proof-of-concept. For more detailed testing methodology you can refer methodology document released by ISECOM (www.isecom.org). This document helps you to some extent to understand what a penetration testing report should contain. Just my 2c. --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- Re: Penetration testing report, farhaanshaikh (Sep 09)
- <Possible follow-ups>
- Re: Penetration testing report, venkataramanan . as (Sep 09)
- RE: Penetration testing report, IRM (Sep 11)
- RE: Penetration testing report, Walter Lamagna (Sep 12)
- RE: Penetration testing report, IRM (Sep 11)