Chapter 12: Vulnerability Management Flashcards

1
Q

What is MAEC?

A

Malware Attribute Enumeration and Characterization -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Threat intelligence requires what type of approach?

A

Signature based, because it compares a vulnerability scan against a set of known threat signatures

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is AIS?

A

Automated Indicator Sharing - This distributes threat intelligence info through computer-to-computer communication, faster communication

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is a credentialed vulnerability scan?

A

A vulnerability scan where valid credentials are supplied to the scanner

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is Active Scanning?

A

Sends test traffic transmissions into the network and monitors the responses of the endpoints

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is Passive Scanning?

A

Does not send any transmissions; it only listens for normal traffic to learn the needed information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is Invicti?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is Nessus?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is Nextpose?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is OpenVAS?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the difference between an Audit and an Assessment?

A

Audit is an examination of results to verify their accuracy whereas an Assessment is

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is Sensitivity level in vulnerability management?

A

It is the depth of the scan

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is the Scope in vulnerability management?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is TAXII?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is STIX?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is TBD?