Honestly none of that is a pen test under almost anybodys understanding of the w... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jabradoodle on Sept 16, 2023 \| parent \| context \| favorite \| on: Is this fraud? And if so, to what extent am I resp... Honestly none of that is a pen test under almost anybodys understanding of the word. If the request wasn't specific, you may be able to get away with arguing that way in a court, who knows. When you tell the director it is not true, author a document that says otherwise, and then document the whole thing on the internet, by that point it is a lie not embilishment, and I'd be worried about fraud myself.

l33t7332273 on Sept 16, 2023 [–]

> Honestly none of that is a pen test under almost anybodys understanding of the word

Testing security groups, verifying auth(z/n), and testing APIs is like 90% of a penetration test.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact