Scenario:
You are the owner and operator of a small information security consulting firm. You have received a request from one of your clients, Infusion Web Marketing, that you provide a written proposal for performing a penetration test on the company’s production Web servers and corporate network.
Environment:
Scope
Production e-commerce Web application server, the e-commerce Web application server is acting as an external point-of-entry into the network:
Ubuntu Linux 16.04 LTS Server (TargetUbuntu01)
Apache Web Server running the e-commerce Web application server
Credit card transaction processing occurs on all web servers
Intrusive or Non-Intrusive
Intrusive. The test will include penetrating past specific security checkpoints.
Compromise or No Compromise
No compromise. The test can compromise with written client authorization only.
Scheduling
Between 2:00 a.m – 6:00 a.m. weekend only (Saturday or Sunday)
Deliverables:
Using the information from the scenario above, provide a written attack and penetration testing plan, describing your firm’s approach to performing the penetration test and what specific tasks, deliverables, and reports you will complete as part of your services. The plan should include these sections:
Table of Contents
Project Summary
Goals and Objectives
Tasks
Reporting
Schedule
Your penetration testing plan is required to be 4-5 pages in length, not including the title and references pages, and cite at least three credible sources other than the course materials. It should follow University academic writing standards and APA style guidelines, as appropriate.
Helpful Resources:
The SANS Institute provides several resources that you might find helpful for this assignment.
The National Institute for Standards and Technologies (NIST) also provides some guidance on this topic.
Course’s Textbook:
Oriyano, S. P. (2014). Hacker techniques, tools, and incident handling (2nd ed.). Burlington, MA: Jones & Bartlett Learning. ISBN-13: 9781284031713
Delivering a high-quality product at a reasonable price is not enough anymore.
That’s why we have developed 5 beneficial guarantees that will make your experience with our service enjoyable, easy, and safe.
You have to be 100% sure of the quality of your product to give a money-back guarantee. This describes us perfectly. Make sure that this guarantee is totally transparent.
Read moreEach paper is composed from scratch, according to your instructions. It is then checked by our plagiarism-detection software. There is no gap where plagiarism could squeeze in.
Read moreThanks to our free revisions, there is no way for you to be unsatisfied. We will work on your paper until you are completely happy with the result.
Read moreYour email is safe, as we store it according to international data protection rules. Your bank details are secure, as we use only reliable payment systems.
Read moreBy sending us your money, you buy the service we provide. Check out our terms and conditions if you prefer business talks to be laid out in official language.
Read more