RE: Sample pent test agreement

From: Mark Teicher (mht3@earthlink.net)
Date: Mon Jun 27 2005 - 11:00:59 EDT


What is very interesting about the URL provided, is that it is a very simple document that anyone can comprehend. I have observed company after company who specialize in security assessment spend an enormous amount of time with their legal department to clearly define the work in a terms and conditions statement or master service agreement statement. Compete waste of resources. There are better things the legal department of a company can be doing than learning about DDOS and the stealthy techniques a pen tester may utilize during a network security assessment.

-----Original Message-----
From: Jennifer Fountain <jfountain@rbinc.com>
Sent: Jun 26, 2005 9:28 PM
To: swiver@cox.net, pen-test@securityfocus.com
Subject: RE: Sample pent test agreement

This was one that I use:

http://www.counterhack.net/permission_memo.html

--Jenn

-----Original Message-----
From: evb [mailto:swiver@cox.net]
Sent: Sun 6/26/2005 12:12 PM
To: pen-test@securityfocus.com
Cc:
Subject: RE: Sample pent test agreement
Might anyone be kind enough to share with me a sample penetration testing
agreement (written contract) to use with clients so that I need not reinvent
the wheel? Thank you so much.

Eric
tossing_salads@hotmail.com

"The Truth Lies at the Heart of the Art of Combat. Once it is mastered, Though shall fear no one, though the devil himself may bar thy way...."



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:30 EDT