Penetration Testing mailing list archives

Re: Good Pentesting checklist

From: "SD List" <list () security-database com>
Date: Wed, 28 Feb 2007 21:46:56 +0100 (CET)

Try OSSTMM methodology (www.osstmm.org). It enumerates checks and tests to
perform.
This could be a good start.

Otherwise, imagination is the real weapon for a security pentester.

Security-Database Team.

Does anyone have a good pentesting checklist they would recommend?
Something to help me get organized, and away from using random attack
vectors and the kitchen sink approach. Thanks.


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------




------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

Current thread:

Re: Good Pentesting checklist Rodrigo Montoro (Sp0oKeR) (Mar 01)
- <Possible follow-ups>
- Re: Good Pentesting checklist jfvanmeter (Mar 01)
  - RE: Good Pentesting checklist Hardwick, Stephen (Mar 04)
  - Re: Good Pentesting checklist Barry Fawthrop (Mar 04)
- Re: Good Pentesting checklist Christian Martorella (Mar 01)
- RE: Good Pentesting checklist Jordan, Jason (Mar 01)
- Re: Good Pentesting checklist SD List (Mar 01)
- Re: Good Pentesting checklist crazy frog crazy frog (Mar 01)
- Re: Good Pentesting checklist Lee Lawson (Mar 01)
- Re: Good Pentesting checklist Varun Nair (Mar 27)