7MS #291: The Quest for Critical Security Controls – Part 4

Did I mention I love the Critical Security Controls? I do. And here’s an absolute diamond I found this week:

This site (http://www.auditscripts.com/free-resources/critical-security-controls/) offers awesome CSC-mapping tools (and they’re free!), specifically:

A spreadsheet with how the CSCs map to other popular frameworks like ISO and NIST
A manual assessment tool for measuring your org – or someone else’s org – against the CSCs. Flippin’ sweet right? RIGHT!

Also, be sure to come and Slack chat with us, as my pal hackernovice is building a tool called MacMon to help you satisfy CSC #1!

Lastly, I built an LOL-worthy pentesting recon tool called SSOTT (Scan Some of the Things) that might help you automate some NMAPing, DIRBing, NIKTOing, and the like. Cheggitout!

Tags: cisecurity

Written by: Brian Johnson

Share on socials:

podcast

7MS #619: Tales of Pentest Pwnage – Part 56
Continue reading
podcast

7MS #618: Writing Savage Pentest Reports with Sysreptor
Continue reading
podcast

7MS #617: Tales of Pentest Pwnage – Part 55
Continue reading

7MS #291: The Quest for Critical Security Controls – Part 4

Recent Posts:

7MS #619: Tales of Pentest Pwnage – Part 56

7MS #618: Writing Savage Pentest Reports with Sysreptor

7MS #617: Tales of Pentest Pwnage – Part 55

About Us

Services

Resources