Ideally a penetration test should simulate a real world attack; in the real world, the attacker will always have some objective beyond “get into the network.”  No matter who the attacker is, they are motivated by something that they are trying to accomplish – and getting into the network is only one step in that process for the attacker.

Source