Penetration Testing mailing list archives
Re: Pen-Testing contracts
From: Bojan Zdrnja <bzdrnja () dianne zesoi fer hr>
Date: Thu, 18 Jul 2002 09:36:09 +0200
At 13:35 17.7.2002 +0200, Johan Denoyer wrote:
Hi everyone, I have been looking for sample audit contracts in the archives, but the sites they point to are now invalid. So I am now asking here to you all if anyone would have sample audit contracts to share with me.
Same here. Some time ago I was also trying to find decent sample on the web.I had to make a contract for vulnerability scanning - although it is not as complex as real penetration testing, much of the details remain same. Only reference that I found on the web was at the Password Crackers Inc.'s web site:
http://www.pwcrack.com/Penetration_Testing/Penetration_Testing_Contract/penetration_testing_contract.htmlYou can find some useful things also here: http://www.foundstone.com/pdf/rfp_template.pdf
Best regards, Bojan Zdrnja ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
Current thread:
- Pen-Testing contracts Johan Denoyer (Jul 17)
- RE: Pen-Testing contracts Password Crackers, Inc. (Jul 17)
- MDAC/ IIS / Shell Code Goodies McKenzie Family (Jul 28)
- Re: MDAC/ IIS / Shell Code Goodies olle (Jul 29)
- MDAC/ IIS / Shell Code Goodies McKenzie Family (Jul 28)
- Re: Pen-Testing contracts Bojan Zdrnja (Jul 18)
- RE: Pen-Testing contracts Password Crackers, Inc. (Jul 17)