What risk does automated shunning in ROE pose?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

What risk does automated shunning in ROE pose?

Explanation:
Automated shunning in ROE is a safety feature that automatically blocks or throttles test traffic when activity looks abusive under the engagement rules. The risk is that this automation can backfire: legitimate test traffic may be blocked, and to continue the assessment the tester may retry from other sources or flood the target with traffic trying to bypass the block, effectively creating a denial-of-service condition. This is why automated shunning can inadvertently turn a controlled pen test into a DoS scenario. It doesn’t inherently reveal data, slow testing as the primary risk, or bypass firewall rules.

Automated shunning in ROE is a safety feature that automatically blocks or throttles test traffic when activity looks abusive under the engagement rules. The risk is that this automation can backfire: legitimate test traffic may be blocked, and to continue the assessment the tester may retry from other sources or flood the target with traffic trying to bypass the block, effectively creating a denial-of-service condition. This is why automated shunning can inadvertently turn a controlled pen test into a DoS scenario. It doesn’t inherently reveal data, slow testing as the primary risk, or bypass firewall rules.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy