Open Source Security Testing Methodology Manual

• Previous message: Mystarix: "PHP remote vulnerabilities"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Wed, 27 Feb 2002 17:41:38 -0500
From: "George V. Lob" <george@MAGNUM.COM>
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

The 2.0 version of this manual is available for download and if you have
never read the first one, it is at least worth a look. It is a manual on
testing security from the outside in using a methodical process. This is
by no means the one and only way, and may not even be the best way. In
the Open Source tradition, it was put together by over 150 people with
security in mind and is an ongoing project. You can read about it and
download it from The Ideahamster Organization.

The Ideahamster Organization <http://www.ideahamster.org/>

Sincerely,

George V. Lob
IT Manager
Magnum US Investments, Inc.
305.935.7544x106
george@magnum.com <mailto:george@magnum.com>

This e-mail is confidential. If it is not intended for you, please
return to sender with notification of incorrect address or please delete
and notify sender. You may not disclose or use it in any way. No
confidentiality or privilege is waived or lost by any mistransmission.

oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
Delivery co-sponsored by Qualys - Make Your Network Secure
oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
Go Beyond PARTIAL Security: FREE White Paper

Stop hassling with half-baked ENTERPRISE SECURITY.
FREE White Paper shows you how to ensure TOTAL security for your Internet
perimeter with the most current and most complete PROACTIVE Vulnerability
Assessment solution. Get your FREE White Paper now. Click here!
https://www.qualys.com/forms/techwhite_86.html
oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo

• Previous message: Mystarix: "PHP remote vulnerabilities"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: File extensions spoofable in MSIE download dialog ... File extensions spoofable in MSIE download dialog ... I don't have internet explorer to test but rfc 2616 describes some "security considerations". ... > extension without a sign of EXE, and issue no Security Warning dialog ... (Bugtraq) Re: Some mail opens a blank page ... YW, Dan, and thanks again for your valuable feedback. ... Save that download link and Product or User ID for CA Internet Security ... and then run the Removal Tool to rid the machine of all Norton crapware. ... (microsoft.public.windows.inetexplorer.ie6_outlookexpress) Re: Short List of Security Questions ... Do you have a list of recommendations for windows? ... I think there are three separate aspects to PC security: ... get and download the latest Firefox and Thunderbird. ... (microsoft.public.security) RE: Smiley central Active X controls ... security setting was selected. ... It still will not allow me to download ... Does NOT monitor behavior on the Internet ... Why some spyware services may mistake Fun Web Products and its MyWebSearch ... (microsoft.public.windowsxp.help_and_support) The ISECOM Top 10 Real Computer Crimes for 2007 and Beyond ... over-hyping done in the security industry and to put things to perspective. ... The ISECOM Top 10 Real Computer Crimes for 2007 and Beyond ... it's the codec, the program, or the file so you download more and more ... try to buy stuff and ship it to Indonesia but your bank calls to alert you ... (Pen-Test)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint