CompTIA PenTest+ (PT0-002) — Question 98

A compliance-based penetration test is primarily concerned with:

Answer options

• A. obtaining PII from the protected network.
• B. bypassing protection on edge devices.
• C. determining the efficacy of a specific set of security standards.
• D. obtaining specific information from the protected network.

Correct answer: C

Explanation

The correct answer, C, highlights the goal of a compliance-based penetration test, which is to evaluate how well specific security standards are being implemented. Options A and D focus on data acquisition, which is not the primary concern of compliance tests, while B addresses bypassing protections, which is more relevant to general penetration testing rather than compliance.