Validating Access Token

Verifying your engagement link…

RedTeam3

Offensive Security · Calgary, AB

Session —

Authorized Engagement Portal

Define your penetration test and authorize testing.

This portal collects the scope, rules of engagement, and legal authorizations required for RedTeam3 to perform a security assessment of your organization's assets. All selections form part of the binding engagement agreement.

IMPORTANT: The person signing this agreement must have authority to authorize security testing of all listed assets. Unauthorized testing — even by a third party you've contracted — can expose your organization to civil and criminal liability. If you are unsure, consult your CISO, IT director, or legal counsel before proceeding.

01 Customer

→

02 Tier

→

03 Scope

→

04 Rules

→

05 Legal

→

06 Sign

SECTION 01

Customer Information

All fields required

Legal Company Name *

Authorized Signatory Name *

Title / Role *

Business Email *

Phone *

Business Address *

SECTION 02

Engagement Tier

Select one

TIER 01

Basic

Vulnerability identification and manual verification. No exploitation. Suited for compliance and insurance attestations.

External perimeter scan
Light web app review
Manual verification of findings
Executive + technical report

TIER 02

Standard

Active exploitation against external and internal targets. Demonstrates real-world impact of vulnerabilities.

External + internal network
Web application testing
Exploitation of findings
No lateral movement

TIER 03

Advanced

Full attack-chain testing with lateral movement, privilege escalation, and Active Directory enumeration.

All Standard scope
API + Active Directory
Lateral movement / priv-esc
Optional phishing component

TIER 04

Red Team

Goal-based adversary simulation. Multi-vector, time-boxed, designed to test detection and response capabilities.

Black-box objective driven
Phishing + physical (optional)
Persistence + exfil simulation
Purple team debrief included

SECTION 04

Rules of Engagement

Operational parameters

Engagement Model *

Black Box Grey Box White Box

Black: zero info. Grey: limited info / credentials. White: full info / source.

Testing Window *

Business Hours After Hours 24/7 Specific Dates

Engagement Start Date *

Engagement End Date *

Testing Source IPs (RedTeam3 will test from these IPs)

RedTeam3 provides our source IPs in the kickoff email so you can whitelist for monitoring exclusion.

Primary Technical Contact (Customer) *

Emergency Stop Contact (Customer) *

Special Instructions / Constraints

SECTION 05

Legal Agreements

Read and acknowledge each

SECTION 06

Authorization & Signature

Final step

By signing, I attest that:

I am an authorized representative of the customer organization named above, and I have the lawful authority to authorize RedTeam3 Inc. to conduct the security testing activities defined in this agreement against all assets listed in Section 03. I have read and accepted each legal agreement in Section 05.

Printed Name *

Date *

Signature *

SIGN HERE

Use mouse or touch to sign

Your IP, timestamp, and a SHA-256 hash of this agreement will be recorded for audit purposes.

Processing Agreement

Generating signed PDF, computing integrity hash, and uploading to secure storage…

✓

Agreement Signed

Your signed engagement agreement has been securely recorded. RedTeam3 will be in touch within 1 business day to schedule the kickoff call.

Document ID—

Signed At (UTC)—

Signed From (IP)—

PDF SHA-256—

Submission Failed

We could not record your agreement. Please try again or contact RedTeam3.