SAFETAG
Custom guide creator
Security Auditing Framework and Evaluation Template for Advocacy Groups. SAFETAG is a professional audit framework that adapts traditional penetration testing and risk assessment methodologies to be relevant to smaller non-profit organizations based or operating in the developing world.
Learn MoreMethods
Explore all Safetag Methods
Preparation
This component consists of audit preparation activities that are needed to ensure the components of the audit are able to be conducted effectively and within the on-site...
التحضير
This component consists of audit preparation activities that are needed to ensure the components of the audit are able to be conducted effectively and within...
Preparación
This component consists of audit preparation activities that are needed to ensure the components of the audit are able to be conducted effectively and within...
Preparation
This component consists of audit preparation activities that are needed to ensure the components of the audit are able to be conducted effectively and within...
Preparation
This component consists of audit preparation activities that are needed to ensure the components of the audit are able to be conducted effectively and within...
Preparation
This component consists of audit preparation activities that are needed to ensure the components of the audit are able to be conducted effectively and within...
Preparation
This component consists of audit preparation activities that are needed to ensure the components of the audit are able to be conducted effectively and within...
Подготовка
This component consists of audit preparation activities that are needed to ensure the components of the audit are able to be conducted effectively and within...
Preparation
This component consists of audit preparation activities that are needed to ensure the components of the audit are able to be conducted effectively and within...
Context Research
This component allows the auditor to identify the relevant regional and technological context needed to provide a safe and informed SAFETAG audit. This component consists of desk...
البحث السياقي
This component allows the auditor to identify the relevant regional and technological context needed to provide a safe and informed SAFETAG audit. This component consists...
Investigación Contextual
Este componente le permite al auditor identificar el contexto regional y tecnológico relevante necesario para proveer una auditoría SAFETAG segura e informada. Éste consiste de...
Context Research
This component allows the auditor to identify the relevant regional and technological context needed to provide a safe and informed SAFETAG audit. This component consists...
Context Research
This component allows the auditor to identify the relevant regional and technological context needed to provide a safe and informed SAFETAG audit. This component consists...
Context Research
This component allows the auditor to identify the relevant regional and technological context needed to provide a safe and informed SAFETAG audit. This component consists...
Context Research
This component allows the auditor to identify the relevant regional and technological context needed to provide a safe and informed SAFETAG audit. This component consists...
Изучение контекста
This component allows the auditor to identify the relevant regional and technological context needed to provide a safe and informed SAFETAG audit. This component consists...
Context Research
This component allows the auditor to identify the relevant regional and technological context needed to provide a safe and informed SAFETAG audit. This component consists...
Capacity Assessment
In this component the auditor engages with staff through both formal interviews and informal conversations to identify the organization's strengths and weakness (expertise, finance, willingness to learn,...
تقييم القدرة
In this component the auditor engages with staff through both formal interviews and informal conversations to identify the organization's strengths and weakness (expertise, finance, willingness...
Evaluación de Capacidad
En este componente, el auditor interactúa con el personal a través de entrevistas y conversaciones para identificar las fortalezas y debilidades de la organización (pericia,...
Capacity Assessment
In this component the auditor engages with staff through both formal interviews and informal conversations to identify the organization's strengths and weakness (expertise, finance, willingness...
Capacity Assessment
In this component the auditor engages with staff through both formal interviews and informal conversations to identify the organization's strengths and weakness (expertise, finance, willingness...
Capacity Assessment
In this component the auditor engages with staff through both formal interviews and informal conversations to identify the organization's strengths and weakness (expertise, finance, willingness...
Capacity Assessment
In this component the auditor engages with staff through both formal interviews and informal conversations to identify the organization's strengths and weakness (expertise, finance, willingness...
Оценка ресурсов
In this component the auditor engages with staff through both formal interviews and informal conversations to identify the organization's strengths and weakness (expertise, finance, willingness...
Capacity Assessment
In this component the auditor engages with staff through both formal interviews and informal conversations to identify the organization's strengths and weakness (expertise, finance, willingness...
Reconnaissance
The remote assessment methodology focuses on direct observation of an organization and their infrastructure, consisting of passive reconnaissance of publicly available data sources ("Open Source Intelligence") This...
الاستطلاع
The remote assessment methodology focuses on direct observation of an organization and their infrastructure, consisting of passive reconnaissance of publicly available data sources (”Open Source...
Reconocimiento
La metodología de evaluación remota se enfoca en la observación directa de una organización y su infraestructura, consistiendo en el reconocimiento pasivo de fuentes de...
Reconnaissance
The remote assessment methodology focuses on direct observation of an organization and their infrastructure, consisting of passive reconnaissance of publicly available data sources (”Open Source...
Reconnaissance
The remote assessment methodology focuses on direct observation of an organization and their infrastructure, consisting of passive reconnaissance of publicly available data sources (”Open Source...
Reconnaissance
The remote assessment methodology focuses on direct observation of an organization and their infrastructure, consisting of passive reconnaissance of publicly available data sources (”Open Source...
Reconnaissance
The remote assessment methodology focuses on direct observation of an organization and their infrastructure, consisting of passive reconnaissance of publicly available data sources (”Open Source...
Рекогносцировка
The remote assessment methodology focuses on direct observation of an organization and their infrastructure, consisting of passive reconnaissance of publicly available data sources (”Open Source...
Reconnaissance
The remote assessment methodology focuses on direct observation of an organization and their infrastructure, consisting of passive reconnaissance of publicly available data sources (”Open Source...
Organizational Policy Review
This methodology explores existing organizational practices, informal agreements, and policies around managing information security and responding to threats. It also seeks to reveal presumptions made within the...
Organizational Policy Review
This methodology explores existing organizational practices, informal agreements, and policies around managing information security and responding to threats. It also seeks to reveal presumptions made...
Organizational Policy Review
This methodology explores existing organizational practices, informal agreements, and policies around managing information security and responding to threats. It also seeks to reveal presumptions made...
Organizational Policy Review
This methodology explores existing organizational practices, informal agreements, and policies around managing information security and responding to threats. It also seeks to reveal presumptions made...
Organizational Policy Review
This methodology explores existing organizational practices, informal agreements, and policies around managing information security and responding to threats. It also seeks to reveal presumptions made...
Organizational Policy Review
This methodology explores existing organizational practices, informal agreements, and policies around managing information security and responding to threats. It also seeks to reveal presumptions made...
Organizational Policy Review
This methodology explores existing organizational practices, informal agreements, and policies around managing information security and responding to threats. It also seeks to reveal presumptions made...
Organizational Policy Review
This methodology explores existing organizational practices, informal agreements, and policies around managing information security and responding to threats. It also seeks to reveal presumptions made...
Organizational Policy Review
This methodology explores existing organizational practices, informal agreements, and policies around managing information security and responding to threats. It also seeks to reveal presumptions made...
Network Mapping
This component allows the auditor to identify security issues with the host's network and map the devices on a host's network, the services that are...
تخطيط الشبكة
This component allows the auditor to identify security issues with the host's network and map the devices on a host's network, the services that are...
Mapeo de Red
Este componente le permite al auditor identificar problemas de seguridad con la red del anfitrión y mapear los dispositivos en la misma, los servicios que...
Network Mapping
This component allows the auditor to identify security issues with the host's network and map the devices on a host's network, the services that are...
Network Mapping
This component allows the auditor to identify security issues with the host's network and map the devices on a host's network, the services that are...
Network Mapping
This component allows the auditor to identify security issues with the host's network and map the devices on a host's network, the services that are...
Network Mapping
This component allows the auditor to identify security issues with the host's network and map the devices on a host's network, the services that are...
Создание карты сети организации
This component allows the auditor to identify security issues with the host's network and map the devices on a host's network, the services that are...
Network Mapping
This component allows the auditor to identify security issues with the host's network and map the devices on a host's network, the services that are...
Organizational Device Usage
This component allows the auditor to discover and assess the security of the devices on the network and/or used in the organization. This component consists...
استخدام المنظمة للأجهزة
This component allows the auditor to discover and assess the security of the devices on the network and/or used in the organization. This component consists...
Uso Organizacional de Dispositivos
Este componente le permite al auditor descubrir y evaluar la seguridad de los dispositivos en la red y/o usados en la organización. Este componente consiste...
Organizational Device Usage
This component allows the auditor to discover and assess the security of the devices on the network and/or used in the organization. This component consists...
Organizational Device Usage
This component allows the auditor to discover and assess the security of the devices on the network and/or used in the organization. This component consists...
Organizational Device Usage
This component allows the auditor to discover and assess the security of the devices on the network and/or used in the organization. This component consists...
Organizational Device Usage
This component allows the auditor to discover and assess the security of the devices on the network and/or used in the organization. This component consists...
Использование устройств организацией
This component allows the auditor to discover and assess the security of the devices on the network and/or used in the organization. This component consists...
Organizational Device Usage
This component allows the auditor to discover and assess the security of the devices on the network and/or used in the organization. This component consists...
User Device Assessment
This component allows the auditor to assess the security of the individual devices on the network. This component consists of interviews, surveys, and inspection of devices. ...
تقييم أجهزة المستخدمين
This component allows the auditor to assess the security of the individual devices on the network. This component consists of interviews, surveys, and inspection of...
Evaluación de Dispositivos de Usuario
Este componente permite que el auditor evalúe la seguridad de dispositivos individuales en la red. Consiste de entrevistas, encuestas e inspecciones de los dispositivos....
User Device Assessment
This component allows the auditor to assess the security of the individual devices on the network. This component consists of interviews, surveys, and inspection of...
User Device Assessment
This component allows the auditor to assess the security of the individual devices on the network. This component consists of interviews, surveys, and inspection of...
User Device Assessment
This component allows the auditor to assess the security of the individual devices on the network. This component consists of interviews, surveys, and inspection of...
User Device Assessment
This component allows the auditor to assess the security of the individual devices on the network. This component consists of interviews, surveys, and inspection of...
Анализ устройств пользователей
This component allows the auditor to assess the security of the individual devices on the network. This component consists of interviews, surveys, and inspection of...
User Device Assessment
This component allows the auditor to assess the security of the individual devices on the network. This component consists of interviews, surveys, and inspection of...
Vulnerability Scanning and Analysis
This component has the auditor discover possible flaws the organization's devices, services, application designs, and networks by testing and comparing them against a variety of online and...
فحص وتحليل الثغرات
This component has the auditor discover possible flaws the organization's devices, services, application designs, and networks by testing and comparing them against a variety of...
Escaneo y Análisis de Vulnerabilidad
Este componente hace que el auditor descubra posibles imperfecciones en los dispositivos, servicios, diseño de aplicaciones y redes de la organización, al probar y compararlos...
Vulnerability Scanning and Analysis
This component has the auditor discover possible flaws the organization's devices, services, application designs, and networks by testing and comparing them against a variety of...
Vulnerability Scanning and Analysis
This component has the auditor discover possible flaws the organization's devices, services, application designs, and networks by testing and comparing them against a variety of...
Vulnerability Scanning and Analysis
This component has the auditor discover possible flaws the organization's devices, services, application designs, and networks by testing and comparing them against a variety of...
Vulnerability Scanning and Analysis
This component has the auditor discover possible flaws the organization's devices, services, application designs, and networks by testing and comparing them against a variety of...
Определение и анализ уязвимостей
This component has the auditor discover possible flaws the organization's devices, services, application designs, and networks by testing and comparing them against a variety of...
Vulnerability Scanning and Analysis
This component has the auditor discover possible flaws the organization's devices, services, application designs, and networks by testing and comparing them against a variety of...
Data Assessment
This component allows the auditor to identify what sensitive data exists for the organization, where it is stored, and how it is transferred. ...
تقييم البيانات
This component allows the auditor to identify what sensitive data exists for the organization, where it is stored, and how it is transferred. ...
Evaluación de Datos
Este componente le permite al auditor identificar qué datos delicados existen para la organización, dónde están almacenados y cómo son transferidos....
Data Assessment
This component allows the auditor to identify what sensitive data exists for the organization, where it is stored, and how it is transferred. ...
Data Assessment
This component allows the auditor to identify what sensitive data exists for the organization, where it is stored, and how it is transferred. ...
Data Assessment
This component allows the auditor to identify what sensitive data exists for the organization, where it is stored, and how it is transferred. ...
Data Assessment
This component allows the auditor to identify what sensitive data exists for the organization, where it is stored, and how it is transferred. ...
Оценка данных
This component allows the auditor to identify what sensitive data exists for the organization, where it is stored, and how it is transferred. ...
Data Assessment
This component allows the auditor to identify what sensitive data exists for the organization, where it is stored, and how it is transferred. ...
Physical and Operational Security
The organizational security methodology is focused on how to mitigate against threats that occur because of the arrangement of digital assets in the physical world -- how...
Physical and Operational Security
The organizational security methodology is focused on how to mitigate against threats that occur because of the arrangement of digital assets in the physical world...
Seguridad Física y Operacional
La metodología de seguridad organizacional está enfocada en cómo mitigar las amenazas que ocurren debido a la disposición de recursos digitales en el mundo físico...
Physical and Operational Security
The organizational security methodology is focused on how to mitigate against threats that occur because of the arrangement of digital assets in the physical world...
Physical and Operational Security
The organizational security methodology is focused on how to mitigate against threats that occur because of the arrangement of digital assets in the physical world...
Physical and Operational Security
The organizational security methodology is focused on how to mitigate against threats that occur because of the arrangement of digital assets in the physical world...
Physical and Operational Security
The organizational security methodology is focused on how to mitigate against threats that occur because of the arrangement of digital assets in the physical world...
Physical and Operational Security
The organizational security methodology is focused on how to mitigate against threats that occur because of the arrangement of digital assets in the physical world...
Physical and Operational Security
The organizational security methodology is focused on how to mitigate against threats that occur because of the arrangement of digital assets in the physical world...
Process Mapping and Risk Modeling
This component allows an auditor to lead the host organization's staff in a series of activities to identify and prioritize the processes that are critical for the...
تخطيط العمليات ونمذجة المخاطر
This component allows an auditor to lead the host organization's staff in a series of activities to identify and prioritize the processes that are critical...
Mapeo de Procesos y Modelado de Riesgo
Este componente le permite al auditor conducir al personal de la organización anfitriona en una serie de actividades para identificar y priorizar los procesos que...
Process Mapping and Risk Modeling
This component allows an auditor to lead the host organization's staff in a series of activities to identify and prioritize the processes that are critical...
Process Mapping and Risk Modeling
This component allows an auditor to lead the host organization's staff in a series of activities to identify and prioritize the processes that are critical...
Process Mapping and Risk Modeling
This component allows an auditor to lead the host organization's staff in a series of activities to identify and prioritize the processes that are critical...
Process Mapping and Risk Modeling
This component allows an auditor to lead the host organization's staff in a series of activities to identify and prioritize the processes that are critical...
Создание карты процессов и моделирование рисков
This component allows an auditor to lead the host organization's staff in a series of activities to identify and prioritize the processes that are critical...
Process Mapping and Risk Modeling
This component allows an auditor to lead the host organization's staff in a series of activities to identify and prioritize the processes that are critical...
Responding to Advanced Threats
This component allows the auditor to be able to identify, triage, and analyze suspicious behavior on a device or in a network. Depending on the analysis, the...
الإستجابة للتهديدات المتقدمة
This component allows the auditor to be able to identify, triage, and analyze suspicious behavior on a device or in a network. Depending on the...
Respondiendo a Amenazas Avanzadas
Este componente le permite al auditor ser capaz de identificar, analizar y priorizar en gravedad los comportamientos sospechosos en un dispositivo o red. Dependiendo del...
Responding to Advanced Threats
This component allows the auditor to be able to identify, triage, and analyze suspicious behavior on a device or in a network. Depending on the...
Responding to Advanced Threats
This component allows the auditor to be able to identify, triage, and analyze suspicious behavior on a device or in a network. Depending on the...
Responding to Advanced Threats
This component allows the auditor to be able to identify, triage, and analyze suspicious behavior on a device or in a network. Depending on the...
Responding to Advanced Threats
This component allows the auditor to be able to identify, triage, and analyze suspicious behavior on a device or in a network. Depending on the...
Другие угрозы
This component allows the auditor to be able to identify, triage, and analyze suspicious behavior on a device or in a network. Depending on the...
Responding to Advanced Threats
This component allows the auditor to be able to identify, triage, and analyze suspicious behavior on a device or in a network. Depending on the...
Threat Assessment
This objective uses a variety of activities to identify possible attackers and gather background information about the capability of those attackers to threaten the...
تقييم التهديد
This objective uses a variety of activities to identify possible attackers and gather background information about the capability of those attackers to threaten the...
Evaluación de Amenazas
Este objetivo usa una variedad de actividades para para identificar posibles atacantes y recopila información de trasfondo acerca de la capacidad de esos atacantes de...
Threat Assessment
This objective uses a variety of activities to identify possible attackers and gather background information about the capability of those attackers to threaten the...
Threat Assessment
This objective uses a variety of activities to identify possible attackers and gather background information about the capability of those attackers to threaten the...
Threat Assessment
This objective uses a variety of activities to identify possible attackers and gather background information about the capability of those attackers to threaten the...
Threat Assessment
This objective uses a variety of activities to identify possible attackers and gather background information about the capability of those attackers to threaten the...
Оценка угроз
This objective uses a variety of activities to identify possible attackers and gather background information about the capability of those attackers to threaten the...
Threat Assessment
This objective uses a variety of activities to identify possible attackers and gather background information about the capability of those attackers to threaten the...
Responsive Support
The auditor provides assistance for any immediate action needed (spot training, tool fixes, consulting on upcoming projects) -- this may also involve addressing vulnerabilities that triggered an...
الدعم الاستجابي
The auditor provides assistance for any immediate action needed (spot training, tool fixes, consulting on upcoming projects) -- this may also involve addressing vulnerabilities that...
Soporte Reactivo
El auditor provee asistencia para cualquier acción inmediata necesitada (entrenamiento puntual, arreglo de herramientas, consultoría en proyectos venideros) -- esto también puede involucrar el tratamiento...
Responsive Support
The auditor provides assistance for any immediate action needed (spot training, tool fixes, consulting on upcoming projects) -- this may also involve addressing vulnerabilities that...
Responsive Support
The auditor provides assistance for any immediate action needed (spot training, tool fixes, consulting on upcoming projects) -- this may also involve addressing vulnerabilities that...
Responsive Support
The auditor provides assistance for any immediate action needed (spot training, tool fixes, consulting on upcoming projects) -- this may also involve addressing vulnerabilities that...
Responsive Support
The auditor provides assistance for any immediate action needed (spot training, tool fixes, consulting on upcoming projects) -- this may also involve addressing vulnerabilities that...
Оперативная поддержка
The auditor provides assistance for any immediate action needed (spot training, tool fixes, consulting on upcoming projects) -- this may also involve addressing vulnerabilities that...
Responsive Support
The auditor provides assistance for any immediate action needed (spot training, tool fixes, consulting on upcoming projects) -- this may also involve addressing vulnerabilities that...
Debrief
This component consists of an out-brief to key points of contact, providing basic pressure relief through group and individual interactions, and planning future follow-up with the host...
استخلاص
This component consists of an out-brief to key points of contact, providing basic pressure relief through group and individual interactions, and planning future follow-up with...
Reporte
Este componente consiste de un breve resumen de los puntos clave de contacto, proveyendo un alivio de las presiones básicas a través de interacciones grupales...
Debrief
This component consists of an out-brief to key points of contact, providing basic pressure relief through group and individual interactions, and planning future follow-up with...
Debrief
This component consists of an out-brief to key points of contact, providing basic pressure relief through group and individual interactions, and planning future follow-up with...
Debrief
This component consists of an out-brief to key points of contact, providing basic pressure relief through group and individual interactions, and planning future follow-up with...
Debrief
This component consists of an out-brief to key points of contact, providing basic pressure relief through group and individual interactions, and planning future follow-up with...
Подведение итогов
This component consists of an out-brief to key points of contact, providing basic pressure relief through group and individual interactions, and planning future follow-up with...
Debrief
This component consists of an out-brief to key points of contact, providing basic pressure relief through group and individual interactions, and planning future follow-up with...
Follow Up
This component allows an auditor to explain and get feedback on their report as well as evaluate the success of the process over time through a...
المتابعة
This component allows an auditor to explain and get feedback on their report as well as evaluate the success of the process over time through...
Seguimiento
This component allows an auditor to explain and get feedback on their report as well as evaluate the success of the process over time through...
Follow Up
This component allows an auditor to explain and get feedback on their report as well as evaluate the success of the process over time through...
Follow Up
This component allows an auditor to explain and get feedback on their report as well as evaluate the success of the process over time through...
Follow Up
This component allows an auditor to explain and get feedback on their report as well as evaluate the success of the process over time through...
Follow Up
This component allows an auditor to explain and get feedback on their report as well as evaluate the success of the process over time through...
Последующая работа
This component allows an auditor to explain and get feedback on their report as well as evaluate the success of the process over time through...
Follow Up
This component allows an auditor to explain and get feedback on their report as well as evaluate the success of the process over time through...
Report Creation and Recommendation Development
In this component the auditor identifies the organization's strengths and weakness (expertise, finance, willingness to learn, staff time, etc.) to adopting new digital and physical...
Report Creation and Recommendation Development
In this component the auditor identifies the organization's strengths and weakness (expertise, finance, willingness to learn, staff time, etc.) to adopting new digital and physical...
Report Creation and Recommendation Development
En este componente, el auditor identifica las fortalezas y debilidades de la organización (pericia, finanzas, voluntad de aprender, horas de dedicación del personal, etc.) para...
Report Creation and Recommendation Development
In this component the auditor identifies the organization's strengths and weakness (expertise, finance, willingness to learn, staff time, etc.) to adopting new digital and physical...
Report Creation and Recommendation Development
In this component the auditor identifies the organization's strengths and weakness (expertise, finance, willingness to learn, staff time, etc.) to adopting new digital and physical...
Report Creation and Recommendation Development
In this component the auditor identifies the organization's strengths and weakness (expertise, finance, willingness to learn, staff time, etc.) to adopting new digital and physical...
Report Creation and Recommendation Development
In this component the auditor identifies the organization's strengths and weakness (expertise, finance, willingness to learn, staff time, etc.) to adopting new digital and physical...
Report Creation and Recommendation Development
In this component the auditor identifies the organization's strengths and weakness (expertise, finance, willingness to learn, staff time, etc.) to adopting new digital and physical...
Report Creation and Recommendation Development
In this component the auditor identifies the organization's strengths and weakness (expertise, finance, willingness to learn, staff time, etc.) to adopting new digital and physical...