A security analyst is tasked with using a methodology for testing the security of an organization's network as part of incident response preparation. This framework should provide the analyst with a comprehensive set of guidelines for ensuring transparency, reducing testing errors, and delivering actionable metrics. Which framework should the analyst apply?
Diamond Model of Intrusion Analysis
MITRE ATT&CK framework
Open Source Security Testing Methodology Manual (OSSTMM)
OWASP Testing Guide