An organization has requested that a penetration test be performed to determine if it is possible for an attacker to gain a foothold on the organization’s server segment. During the assessment, the penetration tester identifies tools that appear to have been left behind by a prior attack. Which of the following actions should the penetration tester take?
A. Attempt to use the remnant tools to achieve persistence.
B. Document the presence of the left-behind tools in the report and proceed with the test.
C. Remove the tools from the affected systems before continuing on with the test.
D. Discontinue further testing and report the situation to management.
D?