A penetration tester cannot complete a full vulnerability scan because the client's WAF is blocking communications. During which of the following activities should the penetration tester discuss this issue with the client?
During stakeholder alignment, the penetration tester and client discuss challenges, constraints, and objectives.
Addressing WAF interference ensures the scope and goals are adjusted or mitigated to accommodate the issue.
Why Not Other Options?
A: Goal reprioritization focuses on internal team adjustments, not client collaboration.
B: Peer review evaluates findings and methodologies but doesn’t involve clients.
C: Client acceptance occurs post-assessment, not during active engagement.
CompTIA Pentest+ References:
Domain 1.0 (Planning and Scoping)
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit