The Methodology section allows us to define the methodology we will follow during the activity. The most commonly used methodologies are the Open Source Security Testing Methodology Manual (OSSTMM), Penetration Testing Execution Standard (PTES), and the National Institute of Standards and Technology. We can even create our own methodology by defining a checklist, as follows:
- To create a checklist, go to Methodologies and click on Add new. You will see the following screen:
- Then, we need to assign it a name and click on Add to Project:
- We should see that a sample list has been created for us. This can be edited by clicking on the Edit button on the right:
- Here, we can see that the list is in an XML file. We can edit and save it by clicking on Update methodology:
Now, let's organize our reports.