Two terms that one often hears in relation to information systems development are methodologies and tools. A methodology is a recommended way of doing something, and a tool is a device for accomplishing a task. Relating these terms to the building of a house, the arhchitect’s blueprint is a methodology (the architect’s recommended way of building … Read more
A hacking methodology refers to the step-by-step approach used by an aggressor to attack a target such as a computer network. There is no specific step-by-step approach used by all hackers. As can be expected when a group operates outside the rules as hackers do, rules do not apply the same way. A major difference … Read more
There are several well-known penetration testing methodologies and standards. OWASP The Open Web Application Security Project (OWASP) has developed a widely used set of standards, resources, training material, and the famous OWASP Top 10 list, which provides the top ten web vulnerabilities and the methods to detect and prevent them. OSSTMM The Open Source Security … Read more