ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam PT0-002 All Questions

View all questions & answers for the PT0-002 exam
Go to Exam

Exam PT0-002 topic 1 question 349 discussion

Actual exam question from CompTIA's PT0-002
Question #: 349
Topic #: 1
[All PT0-002 Questions]

Which of the following OSSTM testing methodologies should be used to test under the worst conditions?

  • A. Tandem
  • B. Reversal
  • C. Semi-authorized
  • D. Known environment
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by AnnoyingIAGuy at Oct. 8, 2024, 2:01 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
projectgtr
4 months, 2 weeks ago
Selected Answer: B
Reversal is worse case compared to known as in reversal the the environment is known AND the target will never be informed of how and when the test will be conducted. Problem is its not in the book but you have to read the OSSTM v3 manual, the pdf link is in the book but the link is dead. If you search it, its on GitHub. Here is an extract on Reversal , The Analyst engages the target with full knowledge of its processes and operational security, but the target knows nothing of what, how, or when the Analyst will be testing. The true nature of this test is to audit the preparedness of the target to unknown variables and vectors of agitation. The breadth and depth depends upon the quality of the information provided to the Analyst and the Analyst’s applicable knowledge and creativity.
upvoted 3 times
hitagitore
2 months, 1 week ago
ok I thought D because reversal is not in pentest+ materials, but after reading OSSTM I think you are right.
upvoted 1 times
...
...
Nikamy
5 months, 1 week ago
Selected Answer: B
I think B this time. Worst conditions. D is not worst
upvoted 1 times
...
fecffa8
5 months, 1 week ago
Selected Answer: B
It would come down to your definition of worst case. If worst condition is the hacker has all knowledge and information then the answer would be D. If its a fragile system then the answer would be B. The Reversal testing methodology is typically used to simulate testing under the worst or most adverse conditions. This approach involves intentionally reversing the expected conditions to see how a system performs under stress or in failure scenarios, making it ideal for assessing system resilience in challenging situations. B. Reversal: Tests the reversal of changes or operations, often focusing on rollbacks or error corrections. D. Known Environment Testing: Operates with full knowledge of the system’s architecture, tools, and software, simulating a scenario where testers have complete information.
upvoted 1 times
...
koala_lay
5 months, 2 weeks ago
Selected Answer: D
Known environment testing can simulate a worst-case scenario, where an attacker has gained access to sensitive information or insider knowledge about the target, and can exploit it to launch more sophisticated or targeted attacks. A known environment testing can also help identify the most critical or high-risk areas of the target, and provide recommendations for improving its security posture. The other options are not OSSTM testing methodologies that should be used to test under the worst conditions.
upvoted 2 times
...
AnnoyingIAGuy
6 months, 2 weeks ago
Selected Answer: D
I would go with D. Known environment simulates worst case scenario for the target system.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago