Domain 5: Reporting & Communication Flashcards

1
Q

What are the two types of Domain 5 questions I should expect?

A
  • ‘Given a scenario’ for report writing and migration strategies
  • ‘Explain’ for post-report delivery activity and communication during the process
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Why do I need to communicate as a pentester?

A

Three reasons for this:

  • Situational Awareness
  • De-confliction
  • De-escalation
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What will trigger communication?

A
  • Stages
  • Critical Findings
  • Indicators of Prior Compromise
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does communication paths dictate?

A

This dictates not only how the internal pentest team will communicate with one another, but who they are able/authorized to contact within the organization to communicate important details/emergencies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

When writing your report, what is an important step to take with respect to data?

A

When doing this, it is important to normalize, aggregate, and correlate your data in order for it to make sense.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is normalization?

A

This is the process of combining data from multiple sources and in different formats into a common and consistent event format.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are the primary sections of a written report?

A
  • Executive Summary
  • Methodology
  • Finding and remediations
  • Metrics and Measures
  • Conclusion
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

In the ‘findings and remediation’ section of a report, what is an important consideration.

A

In this section an important consideration is the risk appetite of the organization.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How long do you keep the pentest report?

A

This all depends on the contract that was signed and the organization it was signed with.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

In a report, where are your solutions coming from?

A

These are coming from

  • Technology
  • Processes
  • People
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the two main ways to correct SQL injection vulns?

A
  • Sanitize User Input

- Parameterize Queries

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Why is it important to keep detailed notes come post-report activities?

A

Doing this will allow you to inventory and remove shells, tools, and creds that were created during the penetration test.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is built post-report that provides clients with evidence of your findings?

A

This is called the Attestation of Findings

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is a good habit to develop after your pentest?

A

After this, A good habit is to review lessons learned

How well did you know this?
1
Not at all
2
3
4
5
Perfectly