A client has scheduled a wireless penetration test. Which of the following describes the scoping target information MOST likely needed before testing can begin?
A.
The physical location and network ESSIDs to be tested
B.
The number of wireless devices owned by the client
C.
The client's preferred wireless access point vendor
D.
The bands and frequencies used by the client's devices
I think A.
If you don't know the physical location and network ESSIDs to be tested, you could break into the wrong network. And that could be actually illegal.
PenTest+ Practice Tests Book - SYBEX
D. In this scenario, the penetration tester would need to receive the bands and frequencies used by the client’s wireless devices to proceed with the wireless penetration test. Wireless devices may operate on a number of bands and frequencies, and knowing the exact bands and frequencies would allow a penetration tester to conduct the wireless penetration test as requested.
The answer is A. You want to know the physical location because if your client is located in another country, then there may be restrictions and regulations regarding what kind of testing tools you can use.
I think it's A
Knowing the SSIDs that are in scope is critical when working in shared buildings. Penetrating the wrong network could cause legal or even criminal repercussions -Pentest+ book.
Wireless and wired network scoping often comes into play for penetration testers who
will conduct on-site work, or when the network itself is in scope. Thus it’s important to
know which SSIDs belong to your target and which are valid targets. At the same time,
knowing which subnets or IP ranges are in scope is also key to avoid targeting third parties
or otherwise going outside of the penetration test’s scope.
Comptia Pentest studyguide
A.https://www.triaxiomsecurity.com/our-wireless-penetration-testing-methodology/
Gather Scoping Information
After initiating the project, scoping/target information will be collected from the client. In the case of wireless penetration testing, this information will include a list of all MAC Addresses and SSIDs in scope. This will assist the engineer in determining which access points are accounted for, and which access points are actually rogue access points. Additionally, during this stage a list of all buildings and locations are collected, and the project is scheduled.
No way D here.. Why not - 1 The frequency could be understand as 2.4 or 5ghz or both, and it only will have some impact on what equipemnt should be used by the pentester. 2 - If frequency here is understool as Channels, it is ridiculous also because, most of the equipments are set to change the channel as the noise increase on the channel used.
Let me add my argument for choosing A. Who's to say that another company nearby isn't inadvertently using the same bands? When we scope a PenTest we do it with SSID as well as knowing the physical location (I believe by physical location it means address). Even if the SSID is hidden it is still necessary for our assessment. I agree with D1960, we aren't trying to break the law. Imagine the the post office delivering mail based on the type of house you live in, rather than using your name and address.....
The answer is D. The reason is if you are conducting a Pen Test in a multi occupancy office building you need to ensure you are testing the correct WiFi network. The reason it's not A is the SSID may be hidden from you as part of the security measures.
How would D be the most precise way ensure you are testing the right network? If you wanted to test the right network, start with the physical address so you show up to the right building/floor and the SSID so you know you have the right network. To go even further I would ask for the vendor of WAP and then maybe the band. A lot of modern WAP use a flexible band that can frequency hop to the least congested which can make knowing the band and frequencies a moot point.
Also many locations will have multiple access points using multiple bands, so what's the point of knowing the frequency when over a large enough area they could be using all optimal channels 1,6,11 on 2.4ghz
This section is not available anymore. Please use the main Exam Page.PT0-001 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
D1960
Highly Voted 5 years, 1 month agomr_robot
Highly Voted 5 years agogoldengodiva
4 years, 3 months agogoldengodiva
4 years, 3 months agocarlo479
4 years agokloug
Most Recent 2 years, 2 months agomiabe
2 years, 9 months agoGenos_Sid
3 years, 3 months agosmalltech
3 years, 9 months agodp12
3 years, 10 months agosmalltech
3 years, 10 months agoripple
3 years, 11 months agonakres64
4 years agoKirkx
4 years agoxMilkyMan123
4 years, 3 months agoTheThreatGuy
4 years, 3 months agobigwilly69
4 years, 4 months agoboyladdudeman
4 years, 1 month agoEd394
4 years, 5 months agoAcidscars
4 years, 4 months agodyers
3 years, 12 months ago[Removed]
4 years, 8 months ago[Removed]
4 years, 8 months agoboblee
4 years, 10 months ago