Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

1. Threats, Attacks and Vulnerabilities > 1.4 Pen testing concepts > Flashcards

1.4 Pen testing concepts Flashcards

1
Q

Active Recon

A

Involves making a connection to the target host.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Passive Recon

A

Sniffing network traffic to identify assets communicating on the network, service ports used, and potentially some vulnerabilities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Black box assessment

A

The consultant is given no privileged information about the network/security system. Simulates an external threat.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

White box assessment

A

The consultant is given complete access to the network. Tester skips recon phase. Simulates a privileged insider threat.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Gray box assessment

A

The consultant is given some information. Simulates an unprivileged insider threat.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Pivot

A

System and/or set of privileges that allow the tester to compromise network systems.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Pen testing vs. vulnerability scanning

A

Vulnerability scanning is more passive than pen testing.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

1. Threats, Attacks and Vulnerabilities (6 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions