Possibly a different methodology for network testing

Thanks to everyone who pointed out the various Methodologies as I looked
for crossover from what I believe may be a different/alternate method of
undertaking testing.

I have thrown together some bits on how I believe a Vulnerability test
should be undertaken, ensuring that the risks are assessed based upon
the network configuration, data movement profile and basic design of why
the network exists at all.

I still believe it is different to the OSSTMM, OWASP and NSA based
methodologies, and if I get a confirmation from these lists that my
thinking is correct, I will develop this further, with diagrams, flow
charts and templates.

http://www.logicallysecure.com/forum/viewtopic.php?t=192

I have derived this not because I believe these methodologies are
lacking, but that I believe they fulfil different needs.

Anyway , please let me know your thoughts, public or otherwise.

Yes I understand there is not much meat on it, but I am still confirming
if my thoughts are different from other methodologies.

Steve A

(nebs)

Thank you for all your time and help.

The links are to my forum with both a Mind map and a word document. The
mind map software is open source and can be obtained from here:
http://freemind.sourceforge.net/wiki/index.php/Main_Page




---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------