Guideline on Network Security Testing - SP800-42

The purpose of this document is to provide guidance on network security testing. This document identifies network testing requirements and how to prioritize testing activities with limited resources. It describes network security testing techniques and tools. This document provides guidance to assist organizations in avoiding duplication of effort by providing a consistent approach to network security testing throughout the organizations networks.

Furthermore, this document provides a feasible approach for organizations by offering varying levels of network security testing as appropriate to the organizations mission and security objectives.

The main focus of this document is the basic information about techniques and tools for individuals to begin a network security testing program. This document is by no means all-inclusive. Individuals and organizations should consult the references provided in this document as well as vendor product descriptions and other sources of information.