Scope

(past scope from workbook)

PPC

Planning call notes:

methodolgy
whole month testing window
start with a vuln scan in nessus pro
pentesting execution standard framework
info gathering
recon
exlpoitation
reporting
primary objective
- reasonable and expected protections are in place
- see if we can get access to the internal network
  - if we do get inside
    - reach out to the contact and see what they'd want us to know
questions to ask
custom objectives
- nope:
testing main website
include office 365
password attacks
- password sprays 3-12 hours
- lock out policy -
primary contact -
emergency contact method -