CompTIA PenTest+ (PT0-001) — Question 175

A security team is switching firewall vendors. The director of security wants to scope a penetration test to satisfy requirements to perform the test after major architectural changes. Which of the following is the BEST way to approach the project?

Answer options

• A. Design a penetration test approach, focusing on publicly released firewall DoS vulnerabilities.
• B. Review the firewall configuration, followed by a targeted attack by a read team.
• C. Perform a discovery scan to identify changes in the network.
• D. Focus on an objective-based approach to assess network assets with a red team.

Correct answer: D

Explanation

The correct answer, D, emphasizes an objective-based approach, which is crucial for effectively assessing network assets post-architectural changes. Options A and B focus too narrowly on specific vulnerabilities or configurations without the broader assessment needed for such changes. Option C, while useful for identifying changes, does not provide a comprehensive evaluation of the security posture.