- clients could require that you don't perform specific forms of attack on their system (like a DDoS attack, if they're worried that it could apply extra stress to their servers and disrupt their current service)

Pre-Attack Phase: Rules of Engagement Flashcards by Christoph Todd

Rules of engagement definition:

Rules of engagement (ROE) refers to the formal agreement and permission to perform a penetration test. ROE is a guideline for testers and as such should clearly state what is and isn’t allowed.

Simplified by Ermin:
Permission for you as a penetration tester to conduct a certain set of activities.

Don’t ever operate outside of the scope of your ROE w/out explicit permission.

How well did you know this?

Not at all

Perfectly

General notes:

clients could require that you don’t perform specific forms of attack on their system (like a DDoS attack, if they’re worried that it could apply extra stress to their servers and disrupt their current service)

How well did you know this?

Not at all

Perfectly

Brainscape's Knowledge GenomeTM

Pre-Attack Phase: Rules of Engagement Flashcards

Brainscape's Knowledge Genome^TM