Domain overview
This domain frames offensive work as an assessment discipline with legal, operational and reporting boundaries. It is where scope, authorization, methodology and note-taking become the controls that keep a technical engagement credible.
Curated public references
- pentest-standard.readthedocs.io · Latestpentest-standard.readthedocs.io/en/latest/
- csrc.nist.gov · Finalcsrc.nist.gov/pubs/sp/800/115/final
- OWASP Web Security Testing Guideowasp.org/www-project-web-security-testing-guide/
- first.org · Cvssfirst.org/cvss/
- OWASP WSTG · 5 Reportingowasp.org/www-project-web-security-testing-guide/latest/5-Reporting/
Brief index
Penetration Test Workflow
Method, authorization, scope and operator discipline needed to run offensive work professionally.
Penetration Test Workflow
Method, authorization, scope and operator discipline needed to run offensive work professionally.
Why Run A Penetration Test At All?
Method, authorization, scope and operator discipline needed to run offensive work professionally.
Permission to Attack
Method, authorization, scope and operator discipline needed to run offensive work professionally.
Pentesting Standards
Method, authorization, scope and operator discipline needed to run offensive work professionally.
How To Define Scope With The Client
Method, authorization, scope and operator discipline needed to run offensive work professionally.
What Does An Nda Look Like?
Method, authorization, scope and operator discipline needed to run offensive work professionally.
Pta/Scope/Nda Filling Out
Method, authorization, scope and operator discipline needed to run offensive work professionally.
Third-Party Consent Declaration
Method, authorization, scope and operator discipline needed to run offensive work professionally.
The 7 Phases Of A Penetration Test
Method, authorization, scope and operator discipline needed to run offensive work professionally.
University: Yes Or No?
Method, authorization, scope and operator discipline needed to run offensive work professionally.
Security Conferences: Yes Or No?
Method, authorization, scope and operator discipline needed to run offensive work professionally.
Pentesting Effort / Time Budget
Method, authorization, scope and operator discipline needed to run offensive work professionally.
Pentesting Insurance
Method, authorization, scope and operator discipline needed to run offensive work professionally.
Taking Notes
Industrial protocols, safety constraints and legacy trust assumptions in operational environments.
Ejpt - Junior Pentesting Certification
Public certification references relevant to the surrounding discipline.
Pentesting Certifications
Public certification references relevant to the surrounding discipline.