Hands-On Web Penetration Testing with Metasploit
上QQ阅读APP看书,第一时间看更新

Operational security metrics

This part of the OSSTMM section deals with what needs to be protected and how much the attack surface is exposed. This can be measured by creating an RAV (an unbiased factual description of the attack surface).