Penetration Testing mailing list archives
RE: Sample pent test agreement
From: Mark Teicher <mht3 () earthlink net>
Date: Mon, 27 Jun 2005 11:00:59 -0400 (GMT-04:00)
What is very interesting about the URL provided, is that it is a very simple document that anyone can comprehend. I have observed company after company who specialize in security assessment spend an enormous amount of time with their legal department to clearly define the work in a terms and conditions statement or master service agreement statement. Compete waste of resources. There are better things the legal department of a company can be doing than learning about DDOS and the stealthy techniques a pen tester may utilize during a network security assessment. -----Original Message----- From: Jennifer Fountain <jfountain () rbinc com> Sent: Jun 26, 2005 9:28 PM To: swiver () cox net, pen-test () securityfocus com Subject: RE: Sample pent test agreement This was one that I use: http://www.counterhack.net/permission_memo.html --Jenn -----Original Message----- From: evb [mailto:swiver () cox net] Sent: Sun 6/26/2005 12:12 PM To: pen-test () securityfocus com Cc: Subject: RE: Sample pent test agreement Might anyone be kind enough to share with me a sample penetration testing agreement (written contract) to use with clients so that I need not reinvent the wheel? Thank you so much. Eric tossing_salads () hotmail com "The Truth Lies at the Heart of the Art of Combat. Once it is mastered, Though shall fear no one, though the devil himself may bar thy way...."
Current thread:
- RE: Sample pent test agreement Jennifer Fountain (Jun 27)
- RE: Sample pent test agreement Clement Dupuis (Jun 30)
- <Possible follow-ups>
- RE: Sample pent test agreement Mark Teicher (Jun 30)