Penetration Testing Assessment Penetration Test Questionnaire The intent of this form is to gather initial information about your technology infrastructure andtesting intent so that we can properly plan a penetration test. Our services will evaluate the security of your resources against attacks from a malicious source.Based on our findings, we recommend methods to bolster and prevent such attacks fromoccurring. All information provided in this form is strictly confidential. Primary Point of Contact (Full Name):* Email address:* Test Start Date: Test End Date: Do you want an external penetration test for your company?*YesNo Website(s) we will be testing: External IP addresses of internet exposed resources (e.g. firewalls, servers, VPN gateways, user portals, etc.): Do you want an internal penetration test for your company?*YesNo How many (estimated) devices are on your network, such as computers, servers, phones, access points, printers, etc? # of Windows devices # of Linux devices # of MacOS devices Internal subnets in use (e.g. 10.0.0.1/24, 192.168.1.1-192.168.1.254): Do you have an Active Directory environment?YesNo Hostname(s) of Domain Controller(s) We will require a temporary AD account in order to scan your network thoroughly. Please provide your company's domain (e.g. maximumengineering.local): List the security or management products used on your internal networks: Do you want a web application penetration test for your company?*YesNo List each web application to be tested and provide a brief description: Provide the URL for each web appliation: List an estimated number of dynamic pages for each web application: Do you have a custom API(s) that is in scope for testing?YesNo List the estimated number of API endpoints to test per web application: Do you have a web application firewall (WAF) or other web application security implemented?YesNo List the WAF for each we application or describe security controls: Do you want a WiFi assessment for your company?*YesNo How many (estimated) wireless networks will be tested? List all SSIDs: Can all wireless networks be reached from a single location?YesNo If not, how many locations need testing? Brand/model of access points? Brief description of WiFi network setup: Describe how your company uses WiFi: List any additional notes, concerns, or requirements that need to be considered: Acknowledgement: By signing and submitting this form, you acknowledge that you are aware that by subjecting your site to penetration tests, the site and its backend systems will be subject to tests which may possibly affect the way legitimate users experience their work with your site. Possible side effects may include slow response times, and / or possible down-time. In any event, such side effects will be kept to a minimum. You also acknowledge that the testers may be exposed to sensitive information stored on your systems. This information may include IP, client information, financial information as well as any other sensitive information stored on your systems. In addition, the tests may include changes to some data stored on your system. Therefore, it is advised that you perform a backup of the entire system, so that any change made as a result of the tests may be rolled back. *I agreeSubmitReset
