After many years of resisting, I've finally relented to maintain a
blog. The first post is here and it addresses the main failure of risk
- guessing threats. It's a major reason why the OSSTMM has dropped
risk from its pages in version 3.
I will follow up regularly with other posts covering ISECOM projects
like the OSSTMM.
Sincerely,
-pete.
--
Pete Herzog - Managing Director - pete (at) isecom (dot) org [email concealed]
ISECOM - Institute for Security and Open Methodologies
www.isecom.org - www.osstmm.org
www.hackerhighschool.org - www.badpeopleproject.org
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
After many years of resisting, I've finally relented to maintain a
blog. The first post is here and it addresses the main failure of risk
- guessing threats. It's a major reason why the OSSTMM has dropped
risk from its pages in version 3.
https://www.infosecisland.com/blogview/5031-Hackers-May-Be-Giants-with-S
harp-Teeth.html
I will follow up regularly with other posts covering ISECOM projects
like the OSSTMM.
Sincerely,
-pete.
--
Pete Herzog - Managing Director - pete (at) isecom (dot) org [email concealed]
ISECOM - Institute for Security and Open Methodologies
www.isecom.org - www.osstmm.org
www.hackerhighschool.org - www.badpeopleproject.org
------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
http://www.iacertification.org
------------------------------------------------------------------------
[ reply ]