Open Source Security Testing Methodology Manual (OSSTMM)

As mentioned on their official website, this is a peer-reviewed manual of security testing and analysis, providing verified facts. These facts provide actionable information that can measurably improve your operational security.

The OSSTMM includes the following key sections:

• Operational security metrics
• Trust analysis
• Work flow
• Human security testing
• Physical security testing
• Wireless security testing
• Telecommunications security testing
• Data networks security testing
• Compliance regulations
• Reporting with the Security Test Audit Report (STAR)