OSSTMM 3 STAR Released!

[Pete Herzog <lists () isecom org>]

Hi,

We have just released the updated STAR, Attack Surface Metrics 
calculation sheets, and the rav formula!

As part of certain requirements towards compliance, more and more Euro 
companies (so far in France, Germany, Italy, and Switzerland) have 
begun getting their infrastructure's attack surfaces certified through 
ISECOM. As this requires access to the OSSTMM 3 STAR, rav calc sheet, 
and rav formula, we have released them separately here:

http://www.isecom.org/ravs/

There's more details there at the site about Attack Surface metrics. 
This is the core of the stuff we've been talking about for a long time 
as a game-changer to the current guessing problem of the risk models. 
This works where risk fails.

Enjoy!

Sincerely,
-pete.

--
Pete Herzog - Managing Director - pete () isecom org
ISECOM - Institute for Security and Open Methodologies
www.isecom.org - www.osstmm.org
www.hackerhighschool.org - www.badpeopleproject.org

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------