1.7Vulnerability scanning concepts

Question 1

Passively test security controls

Answer 1

Uses an automated vulnerability scanner. Observes and reports findings. Does not take down systems, applications, or services, and doesn’t disrupt business.

Question 2

Identity Vulnerability

Answer 2

Understanding common attacks and taking inventory of vulnerabilities. scanners can report: missing updates, misconfigured security settings, and known exploits

Question 3

Identify lack of security controls

Answer 3

Vulnerability scanners can identify a missing patch of antivirus

Question 4

Identify common misconfigurations

Answer 4

Weak passwords, default usernames and passwords, and open ports.

Question 5

Intrusive vs. non intrusive

Answer 5

Intrusive testing can interrupt service, is much more detailed, and exploits vulnerabilities. non intrusive is more passive, does not exploit vulnerabilities, and does not disrupt service.

Question 6

Credentialed vs non credentialed

Answer 6

credentialed are done as though it is inside the network, emulates an insider attacks. Non-credentialed are done as though it is outside the network, emulates an outside attack. Shows what would be found if the network was scanned.

Question 7

False positive

Answer 7

A result which shows incorrectly that a condition or attribute is present. a false vulnerability