From the course: CompTIA PenTest (PT0-002) Cert Prep
Unlock this course with a free trial
Join today to access over 23,200 courses taught by industry experts.
Ethical mindset
From the course: CompTIA PenTest (PT0-002) Cert Prep
Ethical mindset
- You've heard it said that the main difference between an attacker and a penetration tester is permission. While that's very true, it's not the complete truth. In reality, there's another huge difference between the two mindsets, and that is that of ethics. The ethical hacker, or penetration tester, is called the ethical hacker because of ethics. Whenever you assemble a penetration testing team, you need to make sure that you start with a trusted team. Team members that carry out penetration tests are entrusted with substantial authority. They're doing a lot of things that most users and most external people could not do. Remember, you're playing the part of an attacker. It's important to start off with background checks of your pentesting team. If you do that, you know you're at least starting from a level playing field and you're not adding a malicious attacker to the pentest team and then giving them authority to do some bad things. You want to carry out the penetration testing…
Contents
-
-
-
Planning a pen test8m 21s
-
(Locked)
Rules of engagement10m 28s
-
(Locked)
Regulatory compliance4m 23s
-
(Locked)
Resources and budgets7m 7s
-
(Locked)
Impact and constraints5m 6s
-
(Locked)
Support resources13m 14s
-
(Locked)
Legal groundwork11m 43s
-
(Locked)
Service provider agreements2m 12s
-
(Locked)
Standards and methodologies, part 16m 48s
-
(Locked)
Standards and methodologies, part 29m 17s
-
(Locked)
Environmental and scoping considerations13m 38s
-
(Locked)
Ethical mindset5m 36s
-
(Locked)
Lab environment setup17m 32s
-
(Locked)
Project strategy and risk9m 12s
-
(Locked)
Scope vulnerabilities13m 19s
-
(Locked)
Compliance-based assessments4m 8s
-
-
-
-
-
-
-
-
-
-
-
-