SOP for PenTesting It is expected that this task will be in the region of 1000 words. You are expected to comment on the published penetration testing methodologies (OSSTMM) and design/develop a Standard Operating Procedure (SOP), including a decision making tree, to describe the phases of: intelligence gathering, target profiling, vulnerability identification, target exploitation and post exploitation. An SOP is defined as a set of step-by-step instructions compiled by an organisation to help workers carry out routine operations. For references and bibliography you are expected to use appropriate peer reviewed sources for developing your arguments, and the Harvard referencing style Task Checklist PenTest Methodology Discussion SOP for PenTesting Decision Making Tree