[WEB SECURITY] Do we need desktop admin rights for webapplication penetration testing?

[Sharevane <sharevane@xxxxxxxxx>]

--0-1320332062-1216980794=:42159
Content-Type: text/plain; charset=us-ascii

Hi 

I have to perform web application penetration testing for banking application within the company(intranet scanning)
But the environment is ,they will not be providing admin rights and internet access for performing penetration testing.

I will be using the open source tools other than appscan for this activity.
But I am not sure can we perform penetration testing without admin right?

Till now I have not tried penetration testing without admin rights in
the desktop system which is used for scanning the webapplication using
appscan and opensource tools.

I am looking for quick responses so that i can explain to management here.



thanks&regards


      
--0-1320332062-1216980794=:42159
Content-Type: text/html; charset=us-ascii

<table cellspacing='0' cellpadding='0' border='0' ><tr><td valign='top' style='font: inherit;'>Hi <br><br>I have to perform web application penetration testing for banking application within the company(intranet scanning)<br>But the environment is ,they will not be providing admin rights and internet access for performing penetration testing.<br><br>I will be using the open source tools other than appscan for this activity.<br>But I am not sure can we perform penetration testing without admin right?<br>
Till now I have not tried penetration testing without admin rights in
the desktop system which is used for scanning the webapplication using
appscan and opensource tools.<br><br>I am looking for quick responses so that i can explain to management here.<br>
<br>
thanks&amp;regards</td></tr></table><br>

      
--0-1320332062-1216980794=:42159--