Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Question for any Pen Testers out there

  • 10-07-2013 4:25pm
    #1
    syklops
    Closed Accounts Posts: 18,966 ✭✭✭✭


    I'm putting together a proposal for a client and they have requested a Mea Culpa document. From what I have seen they have taken the EC Council's ECSA/LPT study guide and are treating it like the Pen Test bible as in this is how a pen test is done. I say this party because the only reference I can find to a mea culpa document in the context of a pen test is in the ECSA/LPT study guide. There is no other reference on the web.

    I understand its something to do with delineation of liability. Have any pen testers out there used this document or could point me in the right direction?

    The EC Council has come up in this forum before, and I think peoples opinion on them is pretty much the same. Their creation of the LPT, (Licensed Penetration Tester) is marketing genius. Its free money for them, to renew all you have to do is pay $250 a year once you have passed their exam. Unfortunately, this client thinks the EC COuncils methodology is the only one and I need to convince them otherwise. Do other pen testers see this as being the case also?


Comments

Advertisement