Question

Which of the following situations would cause a penetration tester to communicate with a system owner/client during the course of a test? (Select Two)

a. Identifying a false positive
b. Exploiting a vulnerability
c. Conducting a network scan
d. Discovering a critical flaw

Answer 1

A penetration tester must communicate with the client when identifying a false positive to avoid setting off alarms unnecessarily, and when discovering a critical flaw, to ensure prompt and effective risk mitigation.

Step-by-step explanation:

During a penetration test, certain situations require the penetration tester to communicate with the system owner or client. This communication is crucial to ensure transparency and handle the discovery of sensitive information responsibly. There are two specific scenarios where communication is particularly important:

• Identifying a false positive: If the penetration tester identifies what appears to be a vulnerability but determines it is a false positive, they should report this to the client to avoid unnecessary concern and to ensure accurate test results.
• Discovering a critical flaw: When a tester comes across a flaw that poses a significant risk to the system, immediate communication is necessary. Addressing the issue swiftly can prevent potential exploitation and mitigate any related risks.

It is essential for penetration testers to maintain a collaborative and informative relationship with the client throughout the test, gathering information from customers and other stakeholders, employing expert knowledge, and doing a root cause analysis to accurately report their findings.