SP 800-115

Technical Guide to Information Security Testing and Assessment

Date Published: September 2008

Supersedes: SP 800-42 (10/15/2003)

Author(s)

Karen Scarfone (NIST), Murugiah Souppaya (NIST), Amanda Cody (BAH), Angela Orebaugh (BAH)

Abstract

Keywords

Penetration testing; risk assessment; security assessment; security examination; security testing; vulnerability scanning
Control Families

Audit and Accountability; Assessment, Authorization and Monitoring; Risk Assessment; System and Communications Protection; System and Information Integrity; System and Services Acquisition

Documentation

Publication:
SP 800-115 (DOI)
Local Download

Supplemental Material:
SP 800-115 (EPUB) (txt)

Document History:
09/30/08: SP 800-115 (Final)