What are three examples of the items a penetration tester must clean from systems as part of the post-engagement cleanup process? (Choose three.)

When a tester has completed all the testing phases for a penetration test, It is very important to perform the post-engagement cleanup. Having the client or system owner validate that the cleanup efforts are sufficient is also very important. This is not always easy to accomplish, but providing a comprehensive list of activities performed on any systems under test will help.

Examples of the items that a tester will want to be sure to clean from systems include:

• Tester-created credentials: Remove any user accounts you created to maintain persistent access or for any other post-exploitation activity.
• Shells: Remove shells spawned on exploited systems.
• Tools: Remove any tools installed or run from the systems under test.