Penetration tests are most effective when they're conducted as stealth operations without prior notification to the IT department or system administrators.
False
True
The effectiveness of a penetration test does not solely depend on the element of surprise against the IT department or system administrators. While covert testing (red team/blue team exercises) is a method used, it must always be pre-approved and within the agreed upon scope of work. Running covert tests without informing or obtaining permission from the system owner or relevant parties is against legal practices and can breach trust and professional ethical standards. The correct answer must reflect the necessity for approval and communication with pertinent organizational entities. Providing notice and getting explicit permission are mandatory for legal and ethical compliance in penetration testing. The idea that surprise is required could be misleading, as it may incorrectly suggest that penetration testing always imitates malicious methods exactly.
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Join premium for unlimited access and more features
All plans include the following perks.
Our pricing is simple. Full access to all certifications and exams, for one price.
As many practice tests for as many topics as you want.
Use study mode non-stop, no limits.
No annoying ads and popups. Study without distractions.
Track your scores over time in study mode and report cards.
See how you improve over time, and where you need to focus.
Access our store with even more discounts than before.
Unlimited access to all PBQs and be prepared for the real thing.
Create an account or sign in to access our study materials.