Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
OSSTMM
The “Measure, Don’t Guess” Security Testing Methodology
Jan Kopřiva
ALEF CSIRT
jan.kopriva@alef.com
TLP: WHITE
whoami
• Team Lead of CSIRT @ ALEF
• Backround in both Blue and Red
• In case of emergency, my head can be used as
a disco...
What is OSSTMM
?
OpSec
Controls
So how do we test?
One methodology
Does it sound interesting?
• Read it (or the chapters which interest you)
• Go for a certification
Thank you for your attention!
TLP: WHITE
Upcoming SlideShare
Loading in …5
×

OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology

34 views

Published on

Jan Kopriva in Bucharest, Romania on November 8-9th 2018 at DefCamp #9.

The videos and other presentations can be found on https://def.camp/archive

Published in: Technology
  • Be the first to comment

  • Be the first to like this

OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology

  1. 1. OSSTMM The “Measure, Don’t Guess” Security Testing Methodology Jan Kopřiva ALEF CSIRT jan.kopriva@alef.com TLP: WHITE
  2. 2. whoami • Team Lead of CSIRT @ ALEF • Backround in both Blue and Red • In case of emergency, my head can be used as a disco ball
  3. 3. What is OSSTMM ?
  4. 4. OpSec
  5. 5. Controls
  6. 6. So how do we test?
  7. 7. One methodology
  8. 8. Does it sound interesting? • Read it (or the chapters which interest you) • Go for a certification
  9. 9. Thank you for your attention! TLP: WHITE

×