Penetration Testing mailing list archives

Re: Penetration Test Disclaimer?

From: miguel.dilaj () pharma novartis com
Date: Wed, 12 Jan 2005 18:19:16 +0000

Hi Nicholas,

There're many sources. One of them is the Information Security Systems 
Assessment Framework (ISSAF), available at:

        http://www.oissg.org/issaf

(page 1036 in draft 0.1 is a template for a security assessment contract).

The template for the Non Disclosure Agreement (page 1035 in draft 0.1) was 
dropped to be reworked, but if you need it feel free to email me directly.
Kind regards,

Miguel Dilaj (Nekromancer)
Vice-President of IT Security Research, OISSG






Nicholas Fanelli <nfanelli () empire edu>
12/01/2005 15:02

 
        To:     pen-test () securityfocus com
        cc:     (bcc: Miguel Dilaj/PH/Novartis)
        Subject:        Penetration Test Disclaimer?




Hello,

Can someone please direct me to where I could find documentation or a 
template for a security audit contract/disclaimer.

Any help is appreciated!

-Nicholas

Current thread:

Penetration Test Disclaimer? Nicholas Fanelli (Jan 12)
- RE: Penetration Test Disclaimer? Password Crackers, Inc. (Jan 12)
- RE: Penetration Test Disclaimer? Tyler Markowsky (Jan 12)
- <Possible follow-ups>
- Re: Penetration Test Disclaimer? miguel . dilaj (Jan 12)