RE: Sample pent test agreement

[Mark Teicher <mht3 () earthlink net>]

What is very interesting about the URL provided, is that it is a very simple document that anyone can comprehend.  I 
have observed company after company who specialize in security assessment spend an enormous amount of time with their 
legal department to clearly define the work in a terms and conditions statement or master service agreement statement.  
Compete waste of resources.  There are better things the legal department of a company can be doing than learning about 
DDOS and the stealthy techniques a pen tester may utilize during a network security assessment.



-----Original Message-----
From: Jennifer Fountain <jfountain () rbinc com>
Sent: Jun 26, 2005 9:28 PM
To: swiver () cox net, pen-test () securityfocus com
Subject: RE: Sample pent test agreement


This was one that I use:  

http://www.counterhack.net/permission_memo.html

--Jenn

-----Original Message-----
From:   evb [mailto:swiver () cox net]
Sent:   Sun 6/26/2005 12:12 PM
To:     pen-test () securityfocus com
Cc:     
Subject:        RE: Sample pent test agreement
Might anyone be kind enough to share with me a sample penetration testing
agreement (written contract) to use with clients so that I need not reinvent
the wheel?  Thank you so much.

Eric
tossing_salads () hotmail com





"The Truth Lies at the Heart of the Art of Combat.  Once it is mastered, Though shall fear no one, though the devil 
himself may bar thy way...."