The Open Source Security Testing Methodology Manual (OSSTMM) is a peer-reviewed methodology for performing security tests and metrics.
Information
- Founded:
- January 2001
Photos
1 albumSee All
Wall PhotosCreated about a month ago
No one has added fan photos.
OSSTMM The CERN symposium slides are now available. They cover OSSTMM v.3 security metrics and superheroes.
Source: www.isecom.org
OSSTMM Parts of OSSTMM 3 have been included in the next version of the ISO 27000 ISMS manual! Now it's also being presented to be its own ISO standard. So far we have support from the USA, Germany, Italy, and Brazil. Contact your national standards organization to push their support for the OSSTMM as its own ISO standard for Operational Security.
OSSTMM
Pete's been working on the Official Training Guide for New Superheroes, a manual that shows how to get ultimate power and control over your security. Hence, the superhero theme :) "The Official Training Guide for New Superheroes" is free to attend if you're around Barcelona or Madrid but you need to register. All details are available here: http://www.dotforce.es/immagini/eventi/P
OSSTMM
The Psychology Today Magazine article, Everyday Creativity begins with
an example of Pete Herzog doing some basic toy hacking. It's an interesting
article that explores how creative non-artistic people can be. It's
something I always felt is the advantage of people over computers for
hacking.
It's available online here:
http://www.psychologytoday.com/articles/
Source: www.psychologytoday.com
We all marvel at other people's artistic achievements and ingenuity. But most of us fail to nurture our inner innovator. Start living creatively and reap the benefits—including fewer relationship headaches and more fulfilling workdays. By Carlin Flora | Psychology Today
OSSTMM just to try it, we used the RAVs from OSSTMM 3 to find the Attack Surface of a Person to measure their exposure to the H1N1 virus. Interesting results. A Healthy adult is more protected than Healthy adult + Vaccine.
Actual Security to H1N1 Virus based on the RAVs from ISECOM The RAV shows how much you are protected to a particular threat. The higher the number, the more you are protected...
By:Pete
Manuel Moreno Leiva Can be great if any official training center be in Chile or Latam... we can´t found no one here in Latam! :(
OSSTMM We recently finished the re-design of the new RAV calculation sheet to measure the attack surface of anything. Those not familiar, the RAVs are the core of the OSSTMM providing mathematical sensibility and logic to the currently chaotic practice of security testing.
Alvin Singh Khadaroo How to get started in Mauritius
Michael Mondragon How do I become a contributor to OSSTMM/ISECOM?
OSSTMM Started mapping out OSSTMM 4 as we close OSSTMM 3. So far, planned for 4 is tighter integration with Trust Metrics in the tests for improved segregation of resources leading to less maintenance needs and costs. Also looking to integrate the Möbius Defense in as well. Many smaller improvements will also follow. Anything else? Now taking suggestions.
Reebal Ghrawi I'm looking for ISECOM classes in the KSA - Jeddah ??
OSSTMM
Anyone interested in getting involved in the Bad People Project? http://www.facebook.com/note.php?note_id
What do bad people look like to children? This is my submission to how kids envision "bad people". Instructions: This is to be a part of the gallery of "bad people" drawings from children to promote child safety and security projects at ISECOM (www.isecom.org)...
By:Pete
OSSTMM Just a reminder to people looking for ISECOM classes in the USA: there will be one next month in Indianapolis. It is the OSSTMM Security Analyst class from Sept. 21 - 25 and includes the Certification Exam. For more details contact Chris Griffin at 317-903-6516 or by e-mail to info@isecom.org.
Chandrasekar Umapathy I am from India What is the best way to acheive OPST certification.
