Course Hero Logo
Upload to Study
Expert Help
Computer Science
Engineering & Technology
Information Security
Option #1: Attack and Penetration Test Plan Prepare a written...
Subscription benefits

Get more out of your subscription*

  • Access to over 100 million course-specific study resources
  • 24/7 help from Expert Tutors on 140+ subjects
  • Full access to over 1 million Textbook Solutions

*You can change, pause or cancel anytime

Question
Answered

Asked by p01405

Option #1: Attack and Penetration Test Plan Prepare a written...

Option #1: Attack and Penetration Test Plan

Prepare a written proposal for the penetration test plan that describes your firm's approach to performing the penetration test and what specific tasks, deliverables, and reports you will complete as part of your services.

Scenario: You are the owner and operator of a small information security consulting firm. You have received a request from one of your clients, Infusion Web Marketing, to provide a written proposal for performing a penetration test on the company's production Web servers and corporate network.

Environment:

Scope

Production e-commerce Web application server, thee-commerce Web application server is acting as an external point-of-entry into the network:

  • Ubuntu Linux 10.04 LTS Server (TargetUbuntu01)
  • Apache Web Server running the e-commerce Web application server
  • Credit card transaction processing occurs on all web servers.

Intrusive or Non-Intrusive

Intrusive. The test will include penetrating past specific security checkpoints.

Compromise or No Compromise

No compromise. The test can compromise with written client authorization only.

Scheduling

Between 2:00 a.m-6:00 a.m. MST weekend only (Saturday or Sunday)

Deliverables:

Based on the scenario above, provide a written attack and penetration testing plan. The plan should include these sections:

  • Table of Contents
  • Project Summary
  • Goals and Objectives
  • Tasks
  • Reporting
  • Schedule.

Your penetration testing plan should be two to three pages in length and should discuss and cite at least three credible or academic references other than the course materials. The Library is an excellent place to search for credible academic sources. Document and citation formatting should be in conformity with Guide to Writing and APA Requirements.

Helpful Resources:

The SANS Institute provides several resources that you might find helpful for this assignment: http://www.sans.org/reading-room/whitepapers/testing

The National Institute for Standards and Technologies (NIST) also provides guidance on the topic of security and penetration testing: http://csrc.nist.gov/publications/nistpubs/800-115/SP800-115.pdf


Computer Science Engineering & Technology Information Security
Sign up to view the entire interaction
Answer & Explanation
Verified Solved by verified expert
Rated

Answered by rahulbansal

ur

entesque dapibus efficitur laoreet. Nam risus ante, dapibus a molestie consequat, ultrices ac magna. Fusce dui lectus, congue vel laoreet ac, dictum vitae odio. Donec aliquet. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Nam lacinia pulvinar tortor nec facilisis. Pellentesque dapibus efficitur laoreet. Nam risus a

Unlock full access to Course Hero

Explore over 16 million step-by-step answers from our library

Subscribe to view answer
1 Attachment
pentration test plan.docx
docx
Student reviews
100% (3 ratings)
Related Course Resources
Explore documents and answered questions from similar courses
CMIS MISC
Baruch College, CUNY
2408 Documents99 Question & Answers
IT 200
University of Phoenix
1963 Documents28 Question & Answers
IT 210
University of Phoenix
1175 Documents3 Question & Answers
IT 205
University of Phoenix
1152 Documents8 Question & Answers
CMIS 2200
Baruch College, CUNY
932 Documents20 Question & Answers
ECONOMICS MACROECONO
Jomo Kenyatta University of Agriculture and Technology
776 Documents