Exam PT0-002 topic 1 question 172 discussion

It states during the testing it occurred. It doesn't indicate to mean that exploited anything. Both ingress and egress traffic were affected which means to me that bandwidth was an issue.

Successful exploits could cause network disruptions, service outages, or data corruption, which could affect the connectivity and functionality of the oil rig network. Patch installations, application failures, and bandwidth limitations are less likely to be related to the penetration testing activities.

the oil rig is experiencing connectivity issues to corporate applications and upstream services for data acquisitions during the penetration test, the most likely culprit is: D. Bandwidth limitations Explanation: • Bandwidth limitations: During a penetration test, various network activities such as scanning, enumeration, and exploitation attempts can generate significant network traffic. This increased traffic can consume available bandwidth, leading to connectivity issues and degraded performance for other network services. Bandwidth saturation is a common issue when large-scale network tests are performed, particularly in environments with limited network capacity.

Agree with option D. It sounds like an unintended consequence of pentest activity. It is unlikely to include DoS as part of ROE, which option B suggests, especially in production network.

Bandwidth limitations

In the context of a penetration test being performed on an oil rig network, and considering the symptoms reported (issues connecting to corporate applications and upstream services for data acquisitions), the MOST likely culprit would be: B. Successful exploits Explanation: Penetration testing is an activity where security professionals actively try to exploit vulnerabilities in a system to identify weaknesses. If the penetration tester has successfully exploited vulnerabilities within the network, this could lead to disruption in connectivity and access to applications and services, which aligns with the reported issues. Other options don't align as closely with the scenario.

D is correct

B. Successful exploits. If the support organization was able to connect to the corporate applications and upstream services before the assessment, the most likely culprit of the issues they are experiencing is a successful exploit by the penetration tester.

B. Successful exploits is the most likely culprit. A penetration tester assesses the target network for vulnerabilities and can exploit them to gain access to the system. This would explain why the support organization of the rig is having issues connecting to corporate applications and upstream services.

I think a DDOS is a Vulnerability (bandwidth) its working

dddddddddd