The most important document to obtain before beginning any penetration testing is a written statement of permission. This document serves as legal consent from the organization authorizing the penetration testing activities. It ensures that the testers are legally protected and outlines the boundaries and scope of the testing activities. Without this document, any testing could be considered unauthorized and illegal.