Exam PT0-002 topic 1 question 161 discussion

Scope has changed. Update the ROE with new signatures.

i think B is the right answer.

I agree with updating initial document, but shouldn't it be SOW (not ROE) for changing the scope, objectives, and deliverables?

Client is the BOSS, update ROE to be sure, you have said on paper and continue the assessment. Scanning out of scope hosts like C says is not your job to do and may be illegal.

The Rules of Engagement (ROE) define the scope, boundaries, and guidelines for a penetration test. When the scoped network block is updated, it is essential to ensure that the new block of IPs is properly documented in the ROE to maintain legal and ethical boundaries. Therefore, the most appropriate next step would be: B. Update the ROE with new signatures. Explanation: Option B: By updating the ROE to include the new IP block, the tester ensures that all parties are in agreement regarding the updated scope of the assessment. This step maintains the legal and ethical standing of the engagement.

B. Update the ROE and THEN..... C. Scan the 8-bit block to map additional missed hosts. B first though

B ROE with New Signature

The most appropriate next step would be C. Scan the 8-bit block to map additional missed hosts. After obtaining the updated block of IPs from the company, the tester should perform a scan to map any missed hosts in the new block of IPs

Since the company has provided an updated block of IPs, the most appropriate next step for the penetration tester is to continue the assessment with the new block of IPs. It is possible that the previous block was not properly configured or that no hosts were active at the time of the assessment. It is also possible that the new block of IPs contains additional hosts that were not included in the previous block. Updating the ROE with new signatures may be necessary but not the immediate next step.

Continuing the assessment without updating the Rules of Engagement (ROE) is not necessarily inappropriate, but it is always a best practice to ensure that the ROE are up-to-date and accurately reflect the scope and goals of the assessment. The ROE serve as a formal agreement between the penetration tester and the client, outlining the limits and boundaries of the assessment and clarifying what actions are allowed and not allowed. Updating the ROE with new information, such as a change in the network block being assessed, can help to avoid misunderstandings or conflicts during the assessment and ensure that the assessment is carried out in a controlled and ethical manner. Therefore, updating the ROE is a recommended step before continuing the assessment, but it may not be strictly necessary in every situation. The decision to update the ROE or not would depend on the specific details of the scenario and the policies and procedures of the organization conducting the assessment.

Absolutely B