A pen test must avoid disrupting a healthcare provider’s patient systems. Which scoping factor ensures this?

You’re reviewing a Ruby script with user input. Which line indicates a potential command injection risk?

A client needs evidence of a successful exploit for compliance. Which deliverable should you provide?

You’re exploiting a Windows host vulnerable to MS08-067. Which Metasploit module should you use?

A target has an open port 22. Which command tests for weak SSH credentials?

You’re analyzing a PHP script for vulnerabilities. Which tool detects insecure deserialization flaws?

After exploiting a system, you must document the attack path. Which report section should include this?

A web app is susceptible to directory traversal. Which payload tests for this vulnerability?

You need to enumerate subdomains for a target passively. Which tool leverages public certificate transparency logs?

A client requires a pen test but restricts access to production systems. Which document should you consult to clarify permissible targets?