OSSTMM
The Open Source Security Testing Methodology Manual provides a detailed framework of testing strategies for systems, software, applications, communications and the human aspect of cybersecurity.
The methodology focuses primarily on how these systems, applications communicate, so it includes a methodology for:
- Telecommunications (phones, VoIP, etc.)
- Wired Networks
- Wireless communications
| Advantages | Disadvantages |
| Covers various testing strategies in-depth. |
The framework is difficult to understand, very detailed, and tends to use unique definitions. |
| Includes testing strategies for specific targets (I.e. telecommunications and networking) |
Intentionally left blank. |
| The framework is flexible depending upon the organisation's needs. |
Intentionally left blank. |
| The framework is meant to set a standard for systems and applications, meaning that a universal methodology can be used in a penetration testing scenario. |
Intentionally left blank. |
No comments to display
No comments to display