Table of Contents
• Scope
• Goal and Objectives
• Tasks
• Reporting
• Schedule
• Unanswered Questions
• Authorization Letter
Scope
We will be testing your systems at the networks, authentication including user and system passwords.
Goals and Objectives
Our goal for your organization is to find and make you aware of any vulnerability in your Information system. Upon finding these we will give you suggestions on making your systems safer.
Tasks
We will be trying to break into the servers and SANS by using several methods.
We will be trying to break passwords and find user ID information to gain access to shared drives and secure information.
Schedule
We will begin testing on Saturday morning at 2:00 AM and will be done by 6:00 AM. Then testing will resume Sunday Morning 2:00 AM to 6:00 AM.
Reporting
We will be delivering your report as a document that will show graphs and our finding with our suggestions on fixing anything we find.
Unanswered Questions
Do all users have access to the system?
What is your Password expiration policy?
Do your servers have backups?
How often do you do updates?
Authorization Letter
John Smith, CEO of E-commerce Sales has given us permission to do a penetration test on his Information systems. He has given us a green light to run our applications to try to penetrate all levels of his systems. Our findings will be confidential and we will give the organization the findings and all the recordings of our