>_COMMAND ZERO
medium
Single Answer
0

Which of the following is not a common element for a penetration test’s rules of engagement?

Answer Options

A

Handling of sensitive and pentest-related data

B

A list of passwords

C

A list of in-scope IPs or domains

D

A list of emergency contacts

Correct Answer: B

Explanation

Rules of engagement determine how a penetration tester will conduct an engagement. Passwords may be part of the information provided before the test for a full knowledge or partial knowledge test but are not part of the rules of engagement.