CompTIA PenTest+ (PT0-003) — Question 109

A tester is finishing an engagement and needs to ensure that artifacts resulting from the test are safely handled. Which of the following is the best procedure for maintaining client data privacy?

Answer options

• A. Remove configuration changes and any tools deployed to compromised systems.
• B. Securely destroy or remove all engagement-related data from testing systems.
• C. Search through configuration files changed for sensitive credentials and remove them.
• D. Shut down C2 and attacker infrastructure on premises and in the cloud.

Correct answer: B

Explanation

The correct answer is B, as securely destroying or removing all engagement-related data from testing systems is crucial for protecting client data privacy. While option A involves removing changes, it does not address data privacy directly. Option C only deals with sensitive credentials but not the overall data, and option D focuses on deactivating infrastructure, which is not about handling data privacy.