CompTIA PenTest+ PT0-002 Practice Question

You have been engaged to conduct a penetration test on a web application hosted in the European Union. This application processes payment transactions and handles personal user data. Ensuring that your testing methodology is compliant with all relevant legal frameworks, what is the BEST course of action to take during the planning phase?

  • Identify all regulatory frameworks pertinent to the processing of financial transactions and personal data within the application's jurisdiction to define compliant testing strategies.

  • Recommend that the application should be moved to a data center in another region with less restrictive data protection laws to simplify testing procedures.

  • Proceed with the penetration test by targeting common vulnerabilities, prioritizing the discovery of security issues over adherence to specific legal requirements.

  • Limit the scope of the penetration test to only manual techniques on the premise that automated testing could infringe on data protection policies.

CompTIA PenTest+ PT0-002
Planning and Scoping
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Bash, the Crucial Exams Chat Bot
AI Bot