Chapter 22
Ten Deadly Mistakes
Making the wrong choices in your security testing can wreak havoc on your work and possibly even your career. In this chapter, I discuss ten potential pitfalls to be keenly aware of when performing your security assessment work.
Not Getting Approval
Getting documented approval in advance, such as an email, an internal memo, or a formal contract for your security testing efforts — whether it’s from management or from your client — is a must. Outside of laws on the books that might affect your testing, it’s your “Get Out of Jail Free” card.
Assuming That You Can Find All Vulnerabilities
So many...