Scanning Authorisation Agreement

1. Parties

Client Full Name

Job Title

Company Name

Date

2. Target Scope

The following domain(s) and/or IP address(es) are authorised for security scanning by PulseShield:

Target Domains / IP Addresses

3. Passive Scanning Authorisation

I, the undersigned, confirm that I am authorised to grant permission to scan the targets listed above. I understand that PulseShield will perform passive security scanning, which includes:

HTTP security header analysis
SSL/TLS certificate inspection
Cookie and tracker detection
Port enumeration via standard connections
GDPR compliance checks

I acknowledge that:

Passive scans are non-intrusive but may be logged by the target's systems
Scan results may not identify all vulnerabilities — no automated tool guarantees complete coverage
False positives and false negatives are inherent to automated scanning

Note: This agreement is governed by the PulseShield Terms of Service and Privacy Policy, available at pulseshield.co.uk.

Passive Scanning — Authorisation Signature

Signature Sign above (print name below)

Printed Name

Date

4. Active Testing — Optional (Requires Separate Consent)

Active testing involves sending crafted requests to the target system to identify vulnerabilities. This includes but is not limited to:

Brute-force testing — attempting common credentials on login forms, admin panels, and services
Authentication bypass testing
Injection probing (SQL injection, XSS, command injection)
Directory and file enumeration
Exploit verification against known vulnerabilities

Active testing may trigger security alerts, intrusion detection systems, rate limiting, IP blocking, or cause temporary service disruption on the target.

I confirm I have explicit authorisation to perform active security testing — including brute-force testing — on the targets listed above. I understand this may trigger security alerts and I accept full responsibility for any consequences arising from active testing. I have read and agree to the PulseShield Terms of Service.

Active Testing — Separate Authorisation Signature

Signature Sign above (print name below)

Printed Name

Date

5. Indemnification

The Client agrees to indemnify and hold PulseShield harmless from any claims, damages, losses, or expenses (including legal fees) arising from:

The scanning of targets for which the Client did not have proper authorisation
Any third-party claim related to scans initiated under this agreement
Any breach of this agreement or the PulseShield Terms of Service

6. Duration and Revocation

This authorisation remains valid for 12 months from the date of signature, or until revoked in writing by the Client. Revocation should be sent to [email protected].

7. Governing Law

This agreement is governed by and construed in accordance with the laws of England and Wales. Any disputes shall be subject to the exclusive jurisdiction of the courts of England and Wales.

SCANNING AUTHORISATION AGREEMENT

1. Parties

2. Target Scope

3. Passive Scanning Authorisation

4. Active Testing — Optional (Requires Separate Consent)

5. Indemnification

6. Duration and Revocation

7. Governing Law