Your SlideShare is downloading. ×
Pentest Standard Keynote - SourceBoston
Upcoming SlideShare
Loading in...5

Thanks for flagging this SlideShare!

Oops! An error has occurred.


Saving this for later?

Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime - even offline.

Text the download link to your phone

Standard text messaging rates apply

Pentest Standard Keynote - SourceBoston


Published on

The Penetration Testing Execution Standard keynote slides used at SourceBoston on April 22nd 2011

The Penetration Testing Execution Standard keynote slides used at SourceBoston on April 22nd 2011

Published in: Technology

1 Comment
  • Be the first to like this

No Downloads
Total Views
On Slideshare
From Embeds
Number of Embeds
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

No notes for slide
  • I think people may THINK they do ll this and not understand how in depth we go without showing them
  • Do we want to go over the sections?
  • Transcript

    • 1. Fixing the Industry, one Panel at a Time
      Chris Nickerson, Ian Amit, Wim Remes, Stefan Friedli
      SOURCE Boston, 22. April 2011
    • 2. Agenda:We want to talk about Penetration Tests.And we want to talk about it with you.
    • 3. Why?
    • 4. Common Language+Common Standard of Quality
      Eliminate Scanner Monkeys ripping you off.
    • 5. Wait... who are you guys anyway?
    • 6. Chris Nickerson, Dave Kennedy, Ian Amit, Chris Gates, Val Smith, Stefan Friedli, Eric Smith,Wim Remes, Steve Tornio, Andrew Rabie, Brandon Knight, Chris John Riley, Alex Hutton, Dave Shackleford, HD Moore, Joe McCray, John Strand, Justin Searle, Nick Percoco, Robin Wood, Chris John Riley...And dozens of contributors.You get the idea.
    • 7. «Old» Pentesting Scope
    • 8. PTES Methodology
    • 9. Current State
    • 10. First, we created this:
    • 11.
    • 12. Current phase:Stopped talking, started doing.Writing Progress: 50%
    • 13.
    • 14.
    • 15.
    • 16.
    • 17.
    • 18.
    • 19.
    • 20. Initial Reactions
    • 21. «You have to be kidding me.»«No one does that.»«I can’t do this all by myself»«This is a lot of work.»«Is this going into PCI/ISO/...»«We already do that...»
    • 22. RoadmapNow this is the part you come in.
    • 23. We needFeedback
    • 24. We needContributors
      Write. Review. Spread the Word.
      Yes, that also meansyou – accountants, lawyers, marketingfolks, etc...
    • 25. We needyour help to end bad pentesting.
    • 26. It that all?
      Hell NO!Enter the PTES-G (PTES Guide)
      Basically – the standard explained
      and illustrated in a practical manner
    • 27. Say hello to Awesome! (and Rick H.)
    • 28. We are on www.pentest-standard.orgAnd the guide at:
    • 29. Release:Blackhat 2011Brace for Impact.