Type your comment> @SlaCk3rxD said:
Another question… As I’m browsing thru the ocsp report template. Section 3.4 House cleaning : after collecting trophies from the exam network was completed, the student removed all user account and passwords as well as the meterpreter services installed on the system. Offensive security should not have to remove any user accounts or services from the system.
Does this means once done must clean up as it originally is?
Hi,
For the first question: exam guide have explicit manual about this. If you wrote a script or made any changes to existent script you should provide a link to the source code and include all the code into the report and highlight the changes.
Nmap itself and its scripting engine is fully permitted on the exam, there are no restrictions like msf/meterpreter
For the second question: you do not need to delete all the traces in the exam network. This section is more like awareness about your future reports to the real customers