Читать книгу CompTIA Pentest+ Certification For Dummies - Glen E. Clarke - Страница 37

The fourth and final phase of the penetration testing process is reporting and communication. These tasks are the reason the penetration test was performed in the first place: to report on the findings and specify remediation steps the customer can take to reduce or eliminate the threats discovered.

During this phase, you will write a report of the actions you performed during the penetration test and the results of the testing. You will also include recommendations on how to better secure the systems in the report. The report will be delivered to the customer in the sign-off meeting, and the customer will sign-off on the completion of the penetration test.

Chapter 11 covers reporting and communication.

Knowing the phases to the CompTIA penetration testing process is critical on the job and for the exam. Refer to Figure 1-2 for a summary of what occurs at each phase.

Graphic designed and created by Brendon Clarke.

FIGURE 1-2: The CompTIA penetration testing process.