Penetration Testing Execution Standard
PTES méthodologie pentest 7 phases.
Définition
PTES fournit guidelines détaillés par phase et niveau (Tier 1 SMB, Tier 2 Enterprise, Tier 3 Government / Critical). Technical Guidelines couvrent tools, methods, evidence collection. Reporting standardise executive + technical sections. Complémentaire NIST SP 800-115, OSSTMM, OWASP Web Security Testing Guide.
Origine
PTES Working Group (Chris Nickerson, Dave Kennedy, Iftach Ian Amit, Joshua Wright + 100+ contributors), v1 2010.
Usage
Référence pour pentest providers (Offensive Security, Bishop Fox, NCC Group, Trustwave, Rapid7).
Termes liés
- OSSTMM — standard concurrent.
- NIST SP 800-115 — standard NIST.
- OWASP WSTG — guide web.