Scribd
Upload
2K views3 pages

Legal Agreement For PenTesting

This penetration testing engagement agreement outlines what systems and areas will be tested including servers, workstations, routers, firewalls, and more. It details the rules of engagement and compliance requirements. The main clauses address liability, confidentiality, the scope of work, and payments. Both parties sign agreeing to the commercial terms and conditions.

Uploaded by

jefferson
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
2K views3 pages

Legal Agreement For PenTesting

This penetration testing engagement agreement outlines what systems and areas will be tested including servers, workstations, routers, firewalls, and more. It details the rules of engagement and compliance requirements. The main clauses address liability, confidentiality, the scope of work, and payments. Both parties sign agreeing to the commercial terms and conditions.

Uploaded by

jefferson
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 3

Penetration Testing Engagement Agreement

1. Summary of Penetration Testing Requirements:


____________________________________________________________________________
____________________________________________________________________________
____________________________________________________________________________
____________________________________________________________________________
____________________________________________________________________________
____________________________________________________________________________
____________________________________________________________________________
____________________________________________________________________________

2. What Needs To Be Tested:

Servers []
Workstations []
Routers []
Firewalls []
Networking Devices []
IOT Devices []
Cabling []
Databases []
Applications []
Employee Awareness []
Physical security []

3. Rules of Engagement signed on:

…Do you have any security-related policies and standards?


____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________

Do you want us to map your Internet presence?


____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
……
Can you provide us with an architectural diagram, including addresses, host OS types,
and software in use on the hosts?
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________

Can you provide us with the information on how many internet domains, hubs, routers,
servers, workstations, IOT devices, any any other thing that needs to be tested you have
in numbers.
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________

Can you provide a list of sites where we may have to travel to perform assessments on
systems?
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________

Can you tell us which laws or regulations you needs us to be complied to during the test?
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________

4. Main clauses in the agreement:


____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
5. Commercials Both Parties Agreed on:
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________

6. Other clauses in the agreement:


____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________

7. Parties Involved:
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
____________________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
_______________________________________________________
One Way NDA []
Limited Liability of PenTester []

Date Signed ________________

Signature of PenTester Signature of Other Party

________________ _________________

You might also like