What is the purpose of a tamper-evident chain of custody in a pentest?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the eLearnSecurity Junior Penetration Tester exam with our comprehensive quiz platform. Improve your skills with multiple-choice questions, detailed explanations, and exam tips. Get exam ready with ease!

Multiple Choice

What is the purpose of a tamper-evident chain of custody in a pentest?

Explanation:
Preserving evidence integrity and accountability is the central purpose of a tamper-evident chain of custody in a pentest. It ensures that any artifacts collected during testing—logs, screenshots, files, or configuration snapshots—are protected against unauthorized changes and that every handling step is recorded. This means recording who collected the data, when and where it was stored, who accessed it, and what actions were performed, often using tamper-evident seals, cryptographic hashes, and signed audit trails. The result is trustworthy evidence that can be audited, defended, and reused for validation or client reporting, while enabling reproducibility of the assessment. It also helps protect confidentiality and compliance by controlling access to sensitive data. Choices that suggest sharing all data publicly, skipping evidence handling to speed up testing, or destroying evidence after the test miss the fundamental goal of maintaining traceability and integrity.

Preserving evidence integrity and accountability is the central purpose of a tamper-evident chain of custody in a pentest. It ensures that any artifacts collected during testing—logs, screenshots, files, or configuration snapshots—are protected against unauthorized changes and that every handling step is recorded. This means recording who collected the data, when and where it was stored, who accessed it, and what actions were performed, often using tamper-evident seals, cryptographic hashes, and signed audit trails. The result is trustworthy evidence that can be audited, defended, and reused for validation or client reporting, while enabling reproducibility of the assessment. It also helps protect confidentiality and compliance by controlling access to sensitive data. Choices that suggest sharing all data publicly, skipping evidence handling to speed up testing, or destroying evidence after the test miss the fundamental goal of maintaining traceability and integrity.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy