(1) Planning a Pentest Flashcards
What are the three critical components of a pentest?
The three critical components of a pentest are:
-Timing
-Scope
-Authorization
Within the components of a planned pentest, describe timing
Within the components of a planned pentesrt, timing considerings involve a few questions:
-When will the test take place?
-Will employees be told that it is happening?
-Will it have any impact to business operations?
Within the components of a planned pentest, describe Scope
When it comes to the scope component of a planned pentest, these parameters should be considered:
What has everyone agreed on in terms of the scope of the pentest?
Are certain systems included or not included in the pentest?
Within the components of a planned pentest, describe Authorization
When it comes to the Authorization side of a planned pentest, this should be considered:
Who is the person who is approving the pentest?
What should a pentester do if they are addressed by someone who takes note of their activity?
