Professional Documents
Culture Documents
VAPT
VAPT
2. How many Internal IP addresses are used to perform external penetration testing (Both active and inactive)?
3. Hoe many External Ips does your organisation own?
4. How many Internal Ips does your organisation own?
5. Do you use DMZ networks?
6. Are you connected to third-party public cloud services ( such as Amazon or Azure)?
7. Do you have any dedicated connections to other organisation's networks (such as vendors or business partners)?
8. Do you use any remote access services?
9. Approximately how many employees use remote access services?
10. Please list all the services (such as web applications, on-line databases, FTP or SSHdo) that your organisation uses that are
11. How many internal VLANs do you have?
12. Approximately how many active devices are there in your datacenter network (such as servers, storage, switches, firewalls
13. Approximately how many active devices are there in your user network (including DT/LT, IP phone, printers and monitorin
14. Have you previously performed security testing of a similar scope?
and inactive)?
business partners)?
rs, storage, switches, firewalls and routers with an assigned internal IP address)?
phone, printers and monitoring cameras with an assigned internal IP address)?