What are three examples of the items a penetration tester must clean from systems as part of the post-engagement cleanup process? (Choose three.)
- given passwords
- network diagrams
- shells
- tools
- system patches
- tester-created credentials
Explanation: When a tester has completed all the testing phases for a penetration test, It is very important to perform the post-engagement cleanup. Having the client or system owner validate that the cleanup efforts are sufficient is also very important. This is not always easy to accomplish, but providing a comprehensive list of activities performed on any systems under test will help.
Examples of the items that a tester will want to be sure to clean from systems include:
- Tester-created credentials: Remove any user accounts you created to maintain persistent access or for any other post-exploitation activity.
- Shells: Remove shells spawned on exploited systems.
- Tools: Remove any tools installed or run from the systems under test.
Exam with this question: Ethical Hacker: Course Final Exam Answers
Please login or Register to submit your answer