OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology

DefCamp
DefCamp
May. 31, 2019
OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology
OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology
OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology
OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology
OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology
OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology
OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology
OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology
OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology
1 of 9

OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology

May. 31, 2019
Download to read offline
Technology

Jan Kopriva in Bucharest, Romania on November 8-9th 2018 at DefCamp #9. The videos and other presentations can be found on https://def.camp/archive

DefCamp
DefCamp

Recommended

Worlds Worst PowerPointWorlds Worst PowerPoint
Worlds Worst PowerPointjdornberg2.7K views16 slides
Bad Power Point ShowBad Power Point Show
Bad Power Point Showguestceeb5f1K views16 slides
Effective PowerPoint PresentationEffective PowerPoint Presentation
Effective PowerPoint Presentationabard413 views10 slides
Effective PowerPoint PresentationsEffective PowerPoint Presentations
Effective PowerPoint Presentationskaldrich704 views10 slides
Remote Yacht HackingRemote Yacht Hacking
Remote Yacht HackingDefCamp1.7K views89 slides
Mobile, IoT, Clouds… It’s time to hire your own risk manager!Mobile, IoT, Clouds… It’s time to hire your own risk manager!
Mobile, IoT, Clouds… It’s time to hire your own risk manager!DefCamp974 views167 slides

More Related Content

More from DefCamp

Bridging the gap between CyberSecurity R&D and UXBridging the gap between CyberSecurity R&D and UX
Bridging the gap between CyberSecurity R&D and UXDefCamp259 views13 slides
Secure and privacy-preserving data transmission and processing using homomorp...Secure and privacy-preserving data transmission and processing using homomorp...
Secure and privacy-preserving data transmission and processing using homomorp...DefCamp470 views102 slides
Drupalgeddon 2 – Yet Another Weapon for the AttackerDrupalgeddon 2 – Yet Another Weapon for the Attacker
Drupalgeddon 2 – Yet Another Weapon for the AttackerDefCamp269 views35 slides
Economical Denial of Sustainability in the Cloud (EDOS)Economical Denial of Sustainability in the Cloud (EDOS)
Economical Denial of Sustainability in the Cloud (EDOS)DefCamp253 views19 slides
Trust, but verify – Bypassing MFATrust, but verify – Bypassing MFA
Trust, but verify – Bypassing MFADefCamp317 views20 slides
Threat Hunting: From Platitudes to Practical ApplicationThreat Hunting: From Platitudes to Practical Application
Threat Hunting: From Platitudes to Practical ApplicationDefCamp218 views28 slides

More from DefCamp(20)

Bridging the gap between CyberSecurity R&D and UXBridging the gap between CyberSecurity R&D and UX
Bridging the gap between CyberSecurity R&D and UX
DefCamp259 views
Secure and privacy-preserving data transmission and processing using homomorp...Secure and privacy-preserving data transmission and processing using homomorp...
Secure and privacy-preserving data transmission and processing using homomorp...
DefCamp470 views
Drupalgeddon 2 – Yet Another Weapon for the AttackerDrupalgeddon 2 – Yet Another Weapon for the Attacker
Drupalgeddon 2 – Yet Another Weapon for the Attacker
DefCamp269 views
Economical Denial of Sustainability in the Cloud (EDOS)Economical Denial of Sustainability in the Cloud (EDOS)
Economical Denial of Sustainability in the Cloud (EDOS)
DefCamp253 views
Trust, but verify – Bypassing MFATrust, but verify – Bypassing MFA
Trust, but verify – Bypassing MFA
DefCamp317 views
Threat Hunting: From Platitudes to Practical ApplicationThreat Hunting: From Platitudes to Practical Application
Threat Hunting: From Platitudes to Practical Application
DefCamp218 views
Building application security with 0 money downBuilding application security with 0 money down
Building application security with 0 money down
DefCamp176 views
Implementation of information security techniques on modern android based Kio...Implementation of information security techniques on modern android based Kio...
Implementation of information security techniques on modern android based Kio...
DefCamp215 views
Lattice based Merkle for post-quantum epochLattice based Merkle for post-quantum epoch
Lattice based Merkle for post-quantum epoch
DefCamp239 views
The challenge of building a secure and safe digital environment in healthcareThe challenge of building a secure and safe digital environment in healthcare
The challenge of building a secure and safe digital environment in healthcare
DefCamp323 views
Timing attacks against web applications: Are they still practical?Timing attacks against web applications: Are they still practical?
Timing attacks against web applications: Are they still practical?
DefCamp258 views
Tor .onions: The Good, The Rotten and The Misconfigured Tor .onions: The Good, The Rotten and The Misconfigured
Tor .onions: The Good, The Rotten and The Misconfigured
DefCamp811 views
Needles, Haystacks and Algorithms: Using Machine Learning to detect complex t...Needles, Haystacks and Algorithms: Using Machine Learning to detect complex t...
Needles, Haystacks and Algorithms: Using Machine Learning to detect complex t...
DefCamp294 views
We will charge you. How to [b]reach vendor’s network using EV charging station.We will charge you. How to [b]reach vendor’s network using EV charging station.
We will charge you. How to [b]reach vendor’s network using EV charging station.
DefCamp437 views
Connect & Inspire Cyber SecurityConnect & Inspire Cyber Security
Connect & Inspire Cyber Security
DefCamp290 views
The lions and the watering holeThe lions and the watering hole
The lions and the watering hole
DefCamp224 views
Catch Me If You Can - Finding APTs in your networkCatch Me If You Can - Finding APTs in your network
Catch Me If You Can - Finding APTs in your network
DefCamp302 views
WiFi practical hacking "Show me the passwords!"WiFi practical hacking "Show me the passwords!"
WiFi practical hacking "Show me the passwords!"
DefCamp1.6K views
Open Directories: Sensitive data (not) hiding in plain sightOpen Directories: Sensitive data (not) hiding in plain sight
Open Directories: Sensitive data (not) hiding in plain sight
DefCamp237 views
Year of the #WiFiCactusYear of the #WiFiCactus
Year of the #WiFiCactus
DefCamp297 views

Recently uploaded

UiPath Tips and Techniques for Error Handling - Session 2UiPath Tips and Techniques for Error Handling - Session 2
UiPath Tips and Techniques for Error Handling - Session 2DianaGray1017 views9 slides
Metadata & Discovery Group Conference 2023 - Day 1 ProgrammeMetadata & Discovery Group Conference 2023 - Day 1 Programme
Metadata & Discovery Group Conference 2023 - Day 1 ProgrammeCILIP MDG20 views9 slides
Inclusivity and AI: opportunity or threatInclusivity and AI: opportunity or threat
Inclusivity and AI: opportunity or threatAlan Dix30 views37 slides
Knowledge graph use cases in natural language generationKnowledge graph use cases in natural language generation
Knowledge graph use cases in natural language generationElena Simperl78 views47 slides
Keynote: Two years at the British Library... and counting / Alan Danskin (Bri...Keynote: Two years at the British Library... and counting / Alan Danskin (Bri...
Keynote: Two years at the British Library... and counting / Alan Danskin (Bri...CILIP MDG17 views33 slides
Jino Clone: Develop a Car Wash Mobile App with Limited Resources Jino Clone: Develop a Car Wash Mobile App with Limited Resources
Jino Clone: Develop a Car Wash Mobile App with Limited Resources eSiteWorld TechnoLabs Pvt. Ltd.21 views13 slides

Recently uploaded(20)

UiPath Tips and Techniques for Error Handling - Session 2UiPath Tips and Techniques for Error Handling - Session 2
UiPath Tips and Techniques for Error Handling - Session 2
DianaGray1017 views
Metadata & Discovery Group Conference 2023 - Day 1 ProgrammeMetadata & Discovery Group Conference 2023 - Day 1 Programme
Metadata & Discovery Group Conference 2023 - Day 1 Programme
CILIP MDG20 views
Inclusivity and AI: opportunity or threatInclusivity and AI: opportunity or threat
Inclusivity and AI: opportunity or threat
Alan Dix30 views
Knowledge graph use cases in natural language generationKnowledge graph use cases in natural language generation
Knowledge graph use cases in natural language generation
Elena Simperl78 views
Keynote: Two years at the British Library... and counting / Alan Danskin (Bri...Keynote: Two years at the British Library... and counting / Alan Danskin (Bri...
Keynote: Two years at the British Library... and counting / Alan Danskin (Bri...
CILIP MDG17 views
Jino Clone: Develop a Car Wash Mobile App with Limited Resources Jino Clone: Develop a Car Wash Mobile App with Limited Resources
Jino Clone: Develop a Car Wash Mobile App with Limited Resources
eSiteWorld TechnoLabs Pvt. Ltd.21 views
Property Graphs in APEX.pptxProperty Graphs in APEX.pptx
Property Graphs in APEX.pptx
ssuser923120172 views
AMAZON-RESUME.pdfAMAZON-RESUME.pdf
AMAZON-RESUME.pdf
RegineRaneses35 views
Improve Employee Experiences on Cisco RoomOS Devices, Webex, and Microsoft Te...Improve Employee Experiences on Cisco RoomOS Devices, Webex, and Microsoft Te...
Improve Employee Experiences on Cisco RoomOS Devices, Webex, and Microsoft Te...
ThousandEyes78 views
How to Manage Your Offshore Software Development Team EfficientlyHow to Manage Your Offshore Software Development Team Efficiently
How to Manage Your Offshore Software Development Team Efficiently
Capital Numbers18 views
class and object in c++.pptxclass and object in c++.pptx
class and object in c++.pptx
Adarsh College, Hingoli177 views
who we are - values.pptxwho we are - values.pptx
who we are - values.pptx
LauraGarceran28 views
Demystifying ML/AIDemystifying ML/AI
Demystifying ML/AI
Matthew Reynolds22 views
h2 meet pdf test.pdfh2 meet pdf test.pdf
h2 meet pdf test.pdf
JohnLee97165443 views
Easy Salesforce CI/CD with Open Source Only - Dreamforce 23Easy Salesforce CI/CD with Open Source Only - Dreamforce 23
Easy Salesforce CI/CD with Open Source Only - Dreamforce 23
NicolasVuillamy135 views
Experts Live Europe 2023 - Ensure your compliance in Microsoft Teams with Mic...Experts Live Europe 2023 - Ensure your compliance in Microsoft Teams with Mic...
Experts Live Europe 2023 - Ensure your compliance in Microsoft Teams with Mic...
Jasper Oosterveld20 views
Microsoft Azure New - Sep 2023Microsoft Azure New - Sep 2023
Microsoft Azure New - Sep 2023
Daniel Toomey28 views
Fipto Seed Pitch DeckFipto Seed Pitch Deck
Fipto Seed Pitch Deck
sjcobrien33 views
How to DAO?How to DAO?
How to DAO?
Liveplex42 views
The Rise of the Machines: How AI will shape our lives in 2024The Rise of the Machines: How AI will shape our lives in 2024
The Rise of the Machines: How AI will shape our lives in 2024
Iain Martin39 views

OSSTMM: The “Measure, Don’t Guess” Security Testing Methodology