I don't think you need make sure that your tools are legal at ALL OTHER sites when it is talking about only ONE specific site.
What you do need to know is when that ONE SPECIFIC site is going to be open because time restrictions are likely to exist, ex: they want you to do it during operating hours or during non-operating hours of that one specific location.
Agreed. While other factors such as visa requirements (option A), tester access to sites (option B), and the legality of testing tools (option C) are also important considerations, they may not be as directly related to the timing of the test and its impact on the testing process. Therefore, establishing the time of day for the test (option D) is the most relevant factor for a penetration tester when conducting testing at a physical location
Ok so option C. says that you need make sure that your tools are legal at ALL sites. This is pointless as all you need to know is the specific location you're testing, right?
WRONG - if the location is a web application that has multiple subdomains (e.g., admin.example.com, www.example.com), the penetration tester might need to ensure that the tools being used are legal for use across all subdomains or in all areas of that one site, which may spread out very far geographically.
Legality > timing, therefore option C.
I'm going with C only because CompTIA is the way that they are, so thinking like them: C is about ensuring legal compliance, which is mandatory. D is about operational efficiency, which is secondary. Legal compliance takes precedence over scheduling.
The wording only mentions one location being tested. C is talking about legalities within "all sites" which implies a penetration test being conducted at various locations around the world, which isn't the case here. D. is imperative to the operation, as it could directly affect business operations of the client or the availability of a contact within the client organization
C. Verify the tools being used are legal for use at all sites: This is critical because using tools that are illegal in certain jurisdictions can lead to legal repercussions for the tester and the client. It ensures that the testing process adheres to local laws and regulations.
Explanation:
A. Determine if visas are required: While important for international travel, this is more of a logistical concern rather than a direct consideration for the penetration testing process itself.
B. Ensure all testers can access all sites: This is important for planning, but ensuring legal compliance with tools used during the test takes precedence.
D. Establish the time of the day when a test can occur: This is an operational consideration but ensuring the legality of tools is more foundational to conducting the test properly.
The answer is C. Verify the tools being used are legal for use at all sites.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.PT0-002 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
CornKing1st
Highly Voted 1 year, 3 months agoDiddyKongJr
11 months, 2 weeks agodeeden
1 year, 1 month agokinny4000
Most Recent 2 months, 2 weeks agoe21089f
3 months, 1 week agoVslaugh
3 months, 1 week agoBlackSkullz
4 months, 3 weeks agoEtc_Shadow28000
9 months, 3 weeks agoPaula77
9 months, 3 weeks agoCyber_Soter
1 year agoj904
1 year agoBig_Dre
1 year, 1 month agoAlizade
1 year, 5 months agoAlizade
1 year, 6 months ago