As Ethical hackers we engage in sanctioned hacking with permission from system owner. We perform penetration testing for companies in Toronto Ontario and remotely anywhere in North America by hacking the system just like hacker would do but for benign purpose. We take on the role and use the mind-set and skills of an attacker to simulate a malicious attack. We understand both sides the good and a bad and we use this knowledge to help our clients to secure there systems.
We must have explicit permission in writing from the company being tested prior to starting any activity. Legally, the persons who must approve this activity must be the owner of the company or there authorized representative. If the scope changes we must update the contract to reflect this changes before performing new tasks.