CISSP Practice question #192

What is the final stage of a penetration test?
A: Auditing.
B: Reporting.
C: Exploration.
D: Deleting log files.

CBK 6: Security Assessment and Testing
Source: ThorTeaches.com practice tests

Answer


B: Penetration Testing normally has 6 phases: Planning > Reconnaissance > Scanning (enumeration) > Vulnerability assessment > Exploitation > Reporting. The 6th phase for a real attack would be delete logs/evidence and install backdoors.

show less

IT & Cyber Security trainer
Sharing my knowledge, to help you reach your IT certification goals.
CISSP, C|EH, PMP, CCNP, CompTIA Security+, SCP, CCNA-Security, CCNA, et. Al.

You may also like

9 Comments

    1. I might disagree as I believe log files should be deleted prior to reporting, but I am particular in that way. I believe that a report should not be offered until after such stage as such deletions should be noted in said report.

Leave a Reply