Attack and Penetration Test Plan (65 points)
Scenario:
You are the owner and operator of a small information security consulting firm. You have received a request from one of your clients, Infusion Web Marketing, to provide a written proposal for performing a penetration test on the company’s production Web servers and corporate network.
Environment:
Scope |
Production e-commerce Web application server, the e-commerce Web application server is acting as an external point-of-entry into the network: |
Intrusive or Non-Intrusive |
Intrusive. The test will include penetrating past specific security checkpoints. |
Compromise or No Compromise |
No compromise. The test can compromise with written client authorization only. |
Scheduling |
Between 2:00 a.m-6:00 a.m. weekend only (Saturday or Sunday) |
Deliverables:
Using the information from the scenario above, provide a written attack and penetration testing plan, describing your firm’s approach to performing the penetration test and what specific tasks, deliverables, and reports you will complete as part of your services. The plan should include these sections:
Your penetration testing plan should be 2-3 pages in length, not including the title and references pages, and cite at least three credible sources It must follow academic writing standards and APA style guidelines, as appropriate.
The paper must be checked using Originality Check tool (Turnitin Check tool and the match ratio must not exceed 25%.
WhatsApp us