The OSSTMM's main focus is to provide a set of guidelines for security testing that emphasize compliance with laws and regulations above all other concerns.
The OSSTMM emphasizes a scientific testing methodology to obtain quantifiable and repeatable results, focusing on operational security metrics and reducing the reliance on subjective measures. While compliance can be an outcome of an OSSTMM-aligned test, its primary purpose is not to emphasize laws and regulations, but rather the security of operations. Therefore, the statement that compliance with laws and regulations is the main focus of OSSTMM is incorrect.