Scribd Logo
Upload

Welcome to Scribd!

  • Cmgt400 v7 Wk2 Penetration Testing Plan Template

    Uploaded by

    Vasya
    621 views5 pages
    A template for penetration testing

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    A template for penetration testing

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    621 views5 pages

    Cmgt400 v7 Wk2 Penetration Testing Plan Template

    Uploaded by

    Vasya
    A template for penetration testing

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 5

    CMGT/400 v7

    Penetration Testing Plan Template


    Instructions: Replace the information in brackets [ ] with information relevant to your penetration testing
    project. Fill out each of the sections below with information relevant to your project.

    A Penetration Tester evaluates the security of an information infrastructure by intentionally, and safely,
    exploiting vulnerabilities. Take on the role of Penetration Tester for the approved organization you chose
    in Week 1. Research the following information about the organization you chose. Use this template to
    create a Penetration Testing Plan.

    [Organization Name]
    Penetration Testing Scope Statement
    Criteria Response

    Project Title: [Response]

    Project Sponsor(s): [Response]

    Business Context for [Response]


    the Penetration Test:

    Project Scope [Response]


    Description:

    Date Prepared: [Response]

    Prepared By: [Response]

    Penetration Test Pre-Planning


    Resources Pentest
    Organization Client Personnel
    Team Location(s) Provided to Technologies
    Location(s) Aware of Testing
    Pentest Team Used

    [Response] [Response] [Response] [Response] [Response]

    [Response] [Response] [Response] [Response] [Response]

    [Response] [Response] [Response] [Response] [Response]

    [Response] [Response] [Response] [Response] [Response]

    Copyright© 2018 by University of Phoenix. All rights reserved.


    Penetration Testing Plan Template
    CMGT/400 v7
    Page 2 of 5
    High-Level Work Schedule: Project Scope
    Description of Work/Pentest Boundaries Assumptions and Constraints

    What is tested? Social engineering test [Response]


    boundaries? What is acceptable? What are the
    boundaries of physical security tests? What are
    the restriction on invasive pentest attacks? What
    type of corporate policy affect your test?

    [Response]

    Milestones Due Dates

    [Response] [Response]

    Labor Material Total


    ID Activity Resource Cost
    Hours Rate Total Units Cost Total

    Appropriate Authorization (Including Third-Party


    Authorization)

    Description of Authorization and Consent (Identify


    Name Title/Organization
    reference documents)

    [Response] [Response] [Response]

    [Response] [Response] [Response]

    [Response] [Response] [Response]

    Copyright© 2018 by University of Phoenix. All rights reserved.


    Penetration Testing Plan Template
    CMGT/400 v7
    Page 3 of 5
    [Response] [Response] [Response]

    [Response] [Response] [Response]

    [Response] [Response] [Response]

    Reconnaissance Pentest Activities


    Reconnaissance
    Reconnaissance Deliverable Description
    Deliverable Name

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    Scanning Pentest Activities


    Scanning Test
    Scanning Test Deliverable Description
    Deliverable Name

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    Copyright© 2018 by University of Phoenix. All rights reserved.


    Penetration Testing Plan Template
    CMGT/400 v7
    Page 4 of 5
    Gaining Access Activities
    Gaining Access Activity
    Gaining Access Activity Description
    Name

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    Maintaining Access Activities


    Maintaining Access
    Maintaining access Activity Description
    Activity Name

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    Covering Tracks Activities


    Covering Tracks
    Covering Tracks Activity Description
    Activity Name

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    [Response] [Response]

    Copyright© 2018 by University of Phoenix. All rights reserved.


    Penetration Testing Plan Template
    CMGT/400 v7
    Page 5 of 5
    Pentest Analysis and Report Planning
    Describe plan for analyzing and reporting pentest results.

    [Response]

    Copyright© 2018 by University of Phoenix. All rights reserved.

    You might also like