Penetration Testing Findings Repository by Cybersecurity and Infrastructure Security Agency

github.com

Penetration Testing Findings Repository by Cybersecurity and Infrastructure Security Agency

github.com

Yuu YinM to Software EngineeringEnglish · 2 years ago

GitHub - cisagov/pen-testing-findings: A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that may be discovered during a penetration test.

github.com

A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that may be discovered during a penetration test. - GitHub - cisa...

The repository consists of three layers:

Finding Category layer lists the overarching categories

General Finding layer lists high-level findings

Specific Finding layer lists low-level findings

Just an overview of the general findings

General findings

More: https://cmu-sei-podcasts.libsyn.com/a-penetration-testing-findings-repository

You must log in or register to comment.

Chat

Software Engineering

softwareengineering

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !softwareengineering@group.lt

Software Engineering is the systematic and engineered development of software in all its life cycle.

Rules

Keep related to software engineering
Keep comments on-topic of the post
Try to post free/open access content
Try to post content from reliable sources (ACM, IEEE, SEI, NN/G, …), or useful content in general
Relevant questions are welcone, as long they are genuine and respectful
Be genuinely respectful, kind, helpful; act in and assume good faith
No discrimination
No personal attacks, no personal questions
No attention stealing: no ads, spam, influencers influencing, memes, trolling, emotional manipulation/advertising (e.g. engagement through enragement or other negative emotions), jokes that dissipate the focus of the topic, …

Resources

Guide to the Software Engineering Body of Knowledge (SWEBOK) by IEEE Computer Society
ISO/IEC
- ISO/IEC JTC 1/SC 7 Software and systems engineering
  - Standards by ISO/IEC JTC 1/SC 7
- ISO ICS 35 Information technology
  - ISO ICS 35.080 Software
Free licensed resources
- A Beginner’s Guide to Finding User Needs

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

1 user / day
1 user / week
1 user / month
2 users / 6 months
6 local subscribers
383 subscribers
66 Posts
20 Comments
Modlog

mods:
Yuu Yin