Book 2

Question 1

__ ___ involves trying to get access to your system from an attackers perspective.

Answer 1

Penetration Testing.

Question 2

__ __ Is a software program that contains a database of known vulnerabilities against your system to identify weaknesses.

Answer 2

Vulnerability Testing

Question 3

The vulnerability scanner can test the security controls without doing any actual harm. What is this known as?

Answer 3

Passively Testing Security Controls.

Question 4

In vulnerability scanning, once the results are found, what happens next?

Answer 4

you need to interpret your results.

Question 5

In __ __ testing, the administrator acts as if they have no prior knowledge of the network.

Answer 5

Black Box

Question 6

Black Box testing is also known as __

Answer 6

Blind Testing.

Question 7

In __ __ testing, the ethical begins from the premise of knowing something about the network and systems in place.

Answer 7

White Box

Question 8

White Box testing, is also known as ___

Answer 8

Full Disclosure testing

Question 9

In __ __ testing simulates an outsider is working with someone on the inside who has given them some information.

Answer 9

Gray Box Testing

Question 10

Grey Box testing is also known as_

Answer 10

Partial disclosure testin.

Question 11

The __ review assessment examines the ports and protocols used, the rules, segmentation and access control.

Answer 11

design review

Question 12

___ are indications of a problem currently going on.These are conditions that you must respond to right now.

Answer 12

Alarms

Question 13

Slightly below alarms are ___ these are issues that you need to pay attention to but are not bringing the system to its knees at this very moment

Answer 13

Alerts

Question 14

___ indicates where problems are occurring.

Answer 14

Trends