Update-- the Barcelona workshop for the OSSTMM (Open Source Security Testing Methodology Manual) has been pushed back a week to Nov. 29th (next week). Doors open at 10:00 and the workshop will be 10:30 Anyone in the BCN area who wants to come please register by writing workshop@ideahamster.org. The workshop details can be found at http://www.ideahamster.org/workshop.htm. It will be pretty good (I'll be there so it will have that cool, party-like glow). I am including an overview of the workshop below: ------------------ Sponsored by GFT Iberia <http://www.gft-iberia.com/>. Edificio Deutsche Bank Vial Interpolar Del Valles, S/N Parque de Actividades Económicas Can Sant Joan Sant Cugat del Valles This half-day workshop in spanish is free for all attendees and will be hosted by Pete Herzog, creator of the OSSTMM, and presented in Spanish by 3 Spanish key contributors of the OSSTMM: Angel Uruñuela, Jordi Martinez, and Miguel-Angel Dominguez. Contact us <mailto:workshop@ideahamster.org> for reservation and location details. ------------------ Understanding the OSSTMM Workshop covers background information into the OSSTMM, the most widely used and accepted security methodology and the successful application of it. Detailed explanations about the structure and use of the methodology are the focus of the workshop while defining the standards in security testing and what constitutes a "thorough" security test. This workshop demonstrates through presentation and example how the OSSTMM takes security testing far beyond the networked computer systems and into areas such as marketing, human resources, and the executive boardroom. The workshop describes not just the security testing methodology but how it works, how it is to be used, and why it has been designed as such. Details from Pete Herzog, the creator, and other key contributors makes this workshop highly informational. Attendance is interesting for anyone who is involved in managerial decisions of an organization or is concerned about their security or isn't sure if security really is a concern yet. It is pertinent for anyone directly involved with security testers or auditors whether they are an in-house team or contracted. Participants do not have to have previous security knowledge or training. Topics covered will be: applications of security testing and the OSSTMM testing and analysis concepts using and understanding the OSSTMM calculating RAVs understanding the modules, tasks, and the expected results of a complete security test
