lptv4 module 46 ethics of a licensed penetration tester
DESCRIPTION
ECSAv4 Module 00 Student IntroductionTRANSCRIPT
ECSA/LPT
EC CouncilModule XXXXVI
EC-Council Ethics of a Licensed Penetration Tester
What Makes a Licensed Penetration Tester?Penetration Tester?
LPTs constantly analyze their work.
LPTs approach the work in an effort to improve it.
LPTs do not pride on being so indispensable to the projectLPTs do not pride on being so indispensable to the project.
LPTs learn from their successes and mistakes, and from others.
They motivate, complement and reward the team members on doing a good job.
LPTs understand not only what to do and what not to do, but why things are done a certain waycertain way.
LPTs understand the goal of the project and work toward the goal and not merely following orders.
EC-CouncilCopyright © by EC-Council
All Rights Reserved. Reproduction is Strictly Prohibited
LPTs are capable of solving problems or work toward a solution.
Modus Operandi
Being a good Licensed Penetration Tester is not about your technical skill set; it is about how you do itskill set; it is about how you do it.
LPTs are committed to quality.
They are first person to arrive to work and last person to leave.
LPTs are very well organized and use professional calendaring tool to organize their schedule.organize their schedule.
LPTs write down the tasks they need to accomplish, track them, and cross them off when they are finished.
EC-CouncilCopyright © by EC-Council
All Rights Reserved. Reproduction is Strictly Prohibited
y
Preparation
LPTs always carry a pen and notepad to take notes.y y p p
LPTs carry voice recorder and record their findings.
LPTs record all activities.
LPTs share information with others and work as a team.
LPTs always ask questions and are not afraid to say “I don’t know.”
LPTs use all available resources to identify the best practices to employ
EC-CouncilCopyright © by EC-Council
All Rights Reserved. Reproduction is Strictly Prohibited
y p p yin their work and their project.
Evolving as a Licensed Penetration TesterPenetration Tester
Technologies evolve and change.
You must keep your career alive by constantly updating your area of knowledge and skill set.
h ld l k id k l d k l dYou should look outside your workplace to expand your knowledge.
Read books, journals, and trade magazines.
Attend conferences, workshops, and training.
Visit various security websites and forumsVisit various security websites and forums.
Join various security groups and discuss current security related topics.
EC-CouncilCopyright © by EC-Council
All Rights Reserved. Reproduction is Strictly Prohibited
Visit libraries and bookstores.
Dress Code
As a Licensed Penetration Tester, dress code is very i important.
Always wear a tie and look professional at all timesAlways wear a tie and look professional at all times.
You are a professional, so dressing appropriately is important.
Wear full sleeved shirts preferably whiteWear full sleeved shirts, preferably white.
Carry a pen paper and notepad
EC-CouncilCopyright © by EC-Council
All Rights Reserved. Reproduction is Strictly Prohibited
Carry a pen, paper, and notepad.
Example: Licensed Penetration Tester Dress CodeTester Dress Code
EC-CouncilCopyright © by EC-Council
All Rights Reserved. Reproduction is Strictly Prohibited
LPT Audited Logos
LPT h i d h l if h h b i d LPTs are authorized to use these logos to notify that the web sites and networks are thoroughly audited by an LPT.
This site is tested and certified by a Licensed Penetration Tester. The "LPT Audited" mark appears only when a website's security meets the highest security scanning standards of EC-Council's LPT Methodologyhighest security scanning standards of EC Council s LPT Methodology.
EC-CouncilCopyright © by EC-Council
All Rights Reserved. Reproduction is Strictly Prohibited
Example: LPT Audited Logos
EC-CouncilCopyright © by EC-Council
All Rights Reserved. Reproduction is Strictly Prohibited
All the Best as an LPT!
EC-CouncilCopyright © by EC-Council
All Rights Reserved. Reproduction is Strictly Prohibited