Why should a tester use query throttling techniques when running an authorized penetration test on a live network?
- to reduce the number of attack threads that are being sent to the target at the same time
- to limit bandwidth on real-time antivirus and malware scanners
- to create a larger attack surface on the target
- to limit bandwidth on resource heavy applications
| Explanation & Hints:
To work around the issue of bandwidth limitations and vulnerability scanning, slowing down the traffic created by the scanner can help. This is often referred to as query throttling, and it can typically be achieved by modifying the options of the scanning policy. One way to do this is to reduce the number of attack threads being sent to the target simultaneously. |