3.1 Security Assessment

Question 1

(Methods)

Malware Sandboxing

Answer 1

practice of isolating real or potential malicious code into a safe and restricted environment

Question 2

(Methods)

Memory Dumping

Answer 2

helps organization proactively discover and mitigate memory and application vulnerabilities by dumping software to the hard drive for offline analysis

Question 3

(Methods)

Runtime Debugging

Answer 3

allows analysis of code while it is actively running in memory

Question 4

(Methods)

Reconniasance

Answer 4

methodological process of determining specific details about a target as possible before attempting to hack it

Question 5

(Methods)

Fingerprinting

Answer 5

process of determining specific details about a system, including port numbers, services, operating systems, vulnerabilities and accounts

Question 6

(Methods)

Code Review

Answer 6

Proofreading of source code to discover and mitigate software vulnerabilities before they make it into the finished product

Question 7

(Methods)

Social Engineering

Answer 7

manipulating or compromising people into revealing confidential information

• impersonation
• phishing
• spear phishing
• whaling
• reverse social engineering
• spam

Question 8

(Methods)

Pivoting

Answer 8

process of compromising a host in order to use that host to compromise other hosts on a network

Question 9

(Methods)

OSINT

Answer 9

• Open Source Intelligence
• the collection of valuable information from public sources
• Social Media
• Whois

Question 10

(Methods)

Routing tables

Answer 10

record on a router that contain route and network destination information

Question 11

(Methods)

DNS records

Answer 11

Provide important system identifiers to help clients translate system hostnames to IP addresses as well as reverse IP addresses to hostnames, and to help clients locate servers that provide services

Question 12

(Methods)

Search Engines

Answer 12

provide easy access to information about a target

Question 13

(Types)

Penetration Testing

Answer 13

simulating attacks on organizational targets in order to prepare organisations for malicious hackers

Question 14

(Types)

Black Box Pen Testing

Answer 14

simulates black hat hackers by starting off pen testing without prior knowledge of the organizational network

Question 15

(Types)

White box pen testing

Answer 15

simulates a malicious administrator who has complete knowledge of the network

Question 16

(Types)

Grey box pen testing

Answer 16

simulates a malicious non-administrator who has partial knowledge of the network

Question 17

(Types)

Vulnerability Assessment

Answer 17

employ various techniques to discover vulnerabilities but not exploit them

Question 18

(Types)

Self-assessment

Answer 18

in-house vulnerability assessments done by local staff

Question 19

(Types)

Tabletop exercises

Answer 19

brainstorming sessions conducted by security professionals and other stakeholders to discuss an upcoming security assessment

Question 20

(Types)

Internal and External audits

Answer 20

• Internal audits local security staff audit the strengths and weaknesses of security controls
• External audits employ a third party to audit the strengths and weaknesses of security controls

Question 21

(Types)

Color team exercises

Answer 21

pit offensive and defensive teams penetration testers to ensure complete security posture is assessed

Question 22

(Types)

Red/blue/white teams

Answer 22

• Red teams simulate malicious attacks
• Blue teams respond to the res team attacks with analysis techniques
• White team referee the red and blue teams