最近看了德国联邦信息安全办公室(Federal Office for Information Security)写的一篇关于在渗透测试方面的文章–渗透测试模型(A Penetration Testing Model),它用非常浅显的语言,比较详细的介绍了一个组织或者个人在进行渗透测试的时候应该怎么做,以及通用的方法。我感觉很不错,所以推荐给大家。
关于文章的主要内容我这里简单的列了一下,是英文的,我把每项的标题翻一下得了,其他我就不翻译了,感觉大部分人应该都能看懂。至于主要的内容大家就看书吧,一百多页,两三天搞定应该没啥问题。
Objectives of Penetration Testing(渗透测试的目的)
Client goals that can be atteained by penetration testing can be divided into four categories;
1. Improveing security of technical systems
2. Identifying vulnerabilities
3. Having IT security confirmed by an external third party
4. Improving security of organizational and personnel infrastructure
Nature of the penetration test(渗透测试的分类)
Information base(black-box or white-box test)
Agressiveness (passive/scanning to aggressive)
Scope (full, limited or focused)
Approach (covert or overt)
Technique (Network-based, other communications, physical access, socail engineering)
Starting point (from the outside or the inside)
The client’s obligations (客户的义务)
Provision of information depending on the nature of the penetration test
Information from potentially affected third persons
Protective measures for unforseeable system failure
The tester’s Obligations (测试人员的义务)
Secrecy
Compliance with licensing regulations
Documenting the testing procedures and results
General duty of due care
Personnel Requirements (测试人员的要求)
Knowledge of system administration/operating systems
Knowledge of TCP/IP and, if applicable, other network protocols
Knowledge of programming languages
Knowledge of IT security products such as firewalls, instrusion detection systems
Knowledge of how to handle hacker tools and vunlerability scanners
Knowledge of applications/application systems
Creativity
Technical Requirements (技术方面的要求)
Access to public networks
Availability of suitable audting tools
Local test network
THe Five Phases of a Penetration Test(渗透测试的五个步骤)
Preparation
Reconnaissance
Analyzing information and risks
Active intrusion attempts
Final analysis
当然需要说明的是这些步骤之类的所伴随的都是相应的规范文档。
下载:渗透测试模型
本文还暂无回复