PT0-002 Question #572: Real Exam Question with Answer & Explanation

The correct answer is C: To identify any false positives. During a penetration test, maintaining communication with the client is critical to ensure the accuracy and relevance of findings. By discussing results in real-time or at key stages of the assessment, the penetration tester can identify and validate any false positives, which ar

Reporting and Communication

Question

Which of the following reasons explains why a penetration tester should communicate with a client during an assessment?

Options

ATo check if all shells have been removed
BTo discuss the penetration testing budget
CTo identify any false positives
DTo validate customer data destruction

Explanation

During a penetration test, maintaining communication with the client is critical to ensure the accuracy and relevance of findings. By discussing results in real-time or at key stages of the assessment, the penetration tester can identify and validate any false positives, which are incorrectly flagged vulnerabilities or issues. False positives can occur due to misconfigurations, outdated data, or misunderstood system behaviors. Addressing these promptly ensures that the final report is accurate and actionable, reducing unnecessary remediation efforts by the client.

Topics

#Client communication#False positives#Vulnerability validation#Penetration testing methodology

Community Discussion

No community discussion yet for this question.

Full PT0-002 Practice Browse All PT0-002 Questions