Advertisement
Help Keep Boards Alive. Support us by going ad free today. See here: https://subscriptions.boards.ie/.
If we do not hit our goal we will be forced to close the site.

Current status: https://keepboardsalive.com/

Annual subs are best for most impact. If you are still undecided on going Ad Free - you can also donate using the Paypal Donate option. All contribution helps. Thank you.
https://www.boards.ie/group/1878-subscribers-forum

Private Group for paid up members of Boards.ie. Join the club.

Question for any Pen Testers out there

  • 10-07-2013 05:25PM
    #1
    syklops
    Closed Accounts Posts: 18,966 ✭✭✭✭


    I'm putting together a proposal for a client and they have requested a Mea Culpa document. From what I have seen they have taken the EC Council's ECSA/LPT study guide and are treating it like the Pen Test bible as in this is how a pen test is done. I say this party because the only reference I can find to a mea culpa document in the context of a pen test is in the ECSA/LPT study guide. There is no other reference on the web.

    I understand its something to do with delineation of liability. Have any pen testers out there used this document or could point me in the right direction?

    The EC Council has come up in this forum before, and I think peoples opinion on them is pretty much the same. Their creation of the LPT, (Licensed Penetration Tester) is marketing genius. Its free money for them, to renew all you have to do is pay $250 a year once you have passed their exam. Unfortunately, this client thinks the EC COuncils methodology is the only one and I need to convince them otherwise. Do other pen testers see this as being the case also?


Comments

Advertisement