Domain 6: Security Assessment and Testing

Question 1

Pen test begins with no info begins the attack with public info only

Answer 1

Zero-knowledge test aka Black Box Penetration Test

Question 2

Provides internal info to the pen tester, including network diagrams, policies and procedures

Answer 2

Full-knowledge test aka White Box Penetration Test

Question 3

Pen tester receives some limited info

Answer 3

Partial-knowledge test aka Gray Box Penetration Test

Question 4

List the pen tester methodology

Answer 4

1. Planning
2. Reconnaissance
3. Scanning (aka Enumeration)
4. Vulnerability Assessment
5. Exploitation
6. Reporting

Question 5

Scans the network for a list of predefined vulnerabilities such as system misconfiguration, outdated software or lack of patching

Answer 5

Vulnerability Scanning

Question 6

Framework the facilitates the automation of interactions between different security systems

Answer 6

Security Content Automation Protocol (SCAP)

Question 7

• SCAP Component

- Provides a naming system for describing security vulnerabilities

Answer 7

Common Vulnerabilities and Exposures (CVE)

Question 8

• SCAP Component

- Provides a standardized scoring system for describing the severity of security vulnerabilities

Answer 8

Common Vulnerability Scoring System (CVSS)

Question 9

• SCAP Component

- Provides a naming system for system configuration issues

Answer 9

Common Configuration Enumeration (CCE)

Question 10

• SCAP Component

- Provides a naming system for OS, applications, and devices

Answer 10

Common Platform Enumeration (CPE)

Question 11

• SCAP Component

- Provides a language for specifying security checklists

Answer 11

Extensible Configuration Checklist Description Format (XCCDF)

Question 12

• SCAP Component

- Provides a language for describing security testing procedures

Answer 12

Open Vulnerability and Assessment Language (OVAL)

Question 13

• Formal process where auditor comes and verifies that an organization meets a specific regulation standard - i.e. PCI DSS

Answer 13

Security Audit

Question 14

• Informal process where security controls are evaluated i.e. policies, procedures and other administrative controls

Answer 14

Security Assessment

Question 15

Tests the code passively; the code is not running i.e. walkthroughs, syntax checking, and code reviews.

Answer 15

Static testing

Question 16

Tests the code while executing it

Answer 16

Dynamic testing

Question 17

• Used to map customers requirements to the software testing plan
• Traces the requirements ensures that they are being met.

Answer 17

Traceability Matrix

Question 18

• Involves building scripts or tools that simulate activities performed in a application
• Goal is to monitor and establish expected norms for the performance of these transactions

Answer 18

Synthetic Transactions

Question 19

Low-level tests of software components, such as functions, procedures, or objects.

Answer 19

Unit testing

Question 20

Testing software as it is installed and first operated

Answer 20

Installation testing

Question 21

Testing multiple software components as they are combined into a working system

Answer 21

Integration testing

Question 22

Testing software after updates, modifications or patches

Answer 22

Regression testing

Question 23

Testing to ensure that the software meets the customer’s operational requirement

Answer 23

Acceptance testing

Question 24

Submits random, malformed data as inputs into software to determine if it will crash

Answer 24

Fuzzing

Question 25

Seeks to identify and test all unique combinations of software inputs

Answer 25

Combinatorial Software Testing

Question 26

Spells out the use cases for applications i.e. how various functionalities will be leveraged within a applications

Answer 26

Misuse Case Testing Leverages