GIAC Penetration Tester (GPEN) — Question 13

A tester has been contracted to perform a penetration test for a corporate client. The scope of the test is limited to end-user workstations and client programs only.
Which of die following actions is allowed in this test?

Answer options

• A. Attempting to redirect the internal gateway through ARP poisoning
• B. Activating bot clients and performing a denial-of-service against the gateway.
• C. Sniffing and attempting to crack the Domain Administrators password hash.
• D. Sending a malicious pdf to a user and exploiting a vulnerable Reader version.

Correct answer: D

Explanation

Option D is correct because sending a malicious PDF to a user and exploiting a vulnerability is a common method used in penetration tests to assess user awareness and application security. The other options involve actions that could disrupt network services or compromise sensitive information in ways that exceed the agreed-upon scope of testing.