Penetration Testing Execution Standard
PTES is a community standard that defines the phases of a professional penetration test, from pre-engagement scoping and intelligence gathering through exploitation and reporting. It gives clients and testers a shared expectation of what a thorough test includes, so a pentest is more than just running a scanner. It fits the verification phase of the lifecycle, when an application or environment is tested like a real adversary would.