CompTIA PenTest+ PT0-002 Practice Question
A penetration tester is reviewing the Statement of Work (SOW) before starting an engagement with a new client. The SOW outlines the objectives, deliverables, timelines, and milestones for the penetration test. Which of the following would MOST likely be specified in the SOW to define the extent of the penetration test?
The confidentiality agreements outlined in the non-disclosure agreement (NDA) prepared separately by legal teams.
Service performance metrics that the penetration testing team must adhere to, as per the previously defined service-level agreement (SLA).
The risk assessment report template to be used for presenting findings to the client post engagement.
The types of attacks the penetration tester is authorized to perform, such as social engineering or network scanning.