What is the primary purpose of the Compromise & Pivot phase in a penetration test?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

What is the primary purpose of the Compromise & Pivot phase in a penetration test?

Explanation:
Compromise & Pivot is about extending the understanding of risk after you’ve breached a foothold and turning those findings into business insight. The phase aims to map how far an attacker could move, what systems and data could be reached, and, most importantly, what that means for the organization’s risk posture. The real value for the client is captured in the final deliverable: a report that analyzes what was discovered, the potential business impact, and recommended mitigations. That is why selecting the option that focuses on analyzing results, discerning business implications, and providing information in the final report best fits this phase. Activities like deploying more malware to maintain access, patching vulnerabilities during reporting, or wiping logs to hide activity are not aligned with the primary objective of this phase. They represent persistence, remediation, or evasion actions, which fall outside the intended deliverable of communicating risk and remediation in the final report.

Compromise & Pivot is about extending the understanding of risk after you’ve breached a foothold and turning those findings into business insight. The phase aims to map how far an attacker could move, what systems and data could be reached, and, most importantly, what that means for the organization’s risk posture. The real value for the client is captured in the final deliverable: a report that analyzes what was discovered, the potential business impact, and recommended mitigations. That is why selecting the option that focuses on analyzing results, discerning business implications, and providing information in the final report best fits this phase.

Activities like deploying more malware to maintain access, patching vulnerabilities during reporting, or wiping logs to hide activity are not aligned with the primary objective of this phase. They represent persistence, remediation, or evasion actions, which fall outside the intended deliverable of communicating risk and remediation in the final report.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy