vault backup: 2025-03-16 18:59:42

Penetration Testing/Reconnaissance Assignment/Stage 1 - RoE.md

@@ -1,11 +1,9 @@
-- “Scope” - describe what you intend to do and what you are aiming to find  
-- “Permission to test” - outline why you believe this is a legal and ethical thing for you to  
-do in this assignment (or describe if you have to do it in a particular way in order to make  
-sure you stay legal and ethical even if this will limit the amount of information that you  
+- “Scope” - describe what you intend to do and what you are aiming to find
+- “Permission to test” - outline why you believe this is a legal and ethical thing for you to
+do in this assignment (or describe if you have to do it in a particular way in order to make
+sure you stay legal and ethical even if this will limit the amount of information that you
 are able to find
 
-
-
 | Action No | Scope: Summary of Intention                                                                                                                                                                                                                                                                                                                                                           | Permission to Test: Outline of Legal and Ethical Justification                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Allow/Reject |
 | --------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------------ |
 | 1         | I would use WHOIS / Recon-NG to find website registrar identities and the ASN of the company. This would provide me with a list of identities, and their emails, that may have access to infrastructure, or elevated permissions.                                                                                                                                                     | I believe this is legal as WHOIS is a public database of registrar information. No information found through WHOIS is sensitive, and has been published by the company, rather than found - no ethical issues with WHOIS                                                                                                                                                                                                                                                                                                                                                                                                                                                   |              |