Guidelines for Developing Penetration Rules of Behavior

If planned and executed appropriately, penetration testing can be a very useful tool for determining the current security posture of an organization. A well-planned penetration test can vividly illustrate the potential impact of exploited security vulnerabilities for the target organization's present business environment. Formal penetration 'rules of behavior', which document the results of the test planning phase, play a critical role for successful penetration testing.