This document discusses ethical hacking. It defines ethical hacking as independent computer security professionals evaluating target systems' security by attempting to find vulnerabilities without damaging systems or stealing information, then reporting findings to owners. Ethical hackers have strong skills but are completely trustworthy unlike criminal hackers. The document outlines types of security testing ethical hackers perform, the importance of having a security evaluation plan with client awareness of risks when granting ethical hackers access, and how final reports detail vulnerabilities found without revealing testing techniques.