IS3445 CHAP 12 PERFORMING A WEB SITE VULNERABILITY AND SECURITY ASSESSMENT

Question 1

___ is identifying the types of services components that are running on a system.

Answer 1

Enumeration

Question 2

___ is identifying the type and version of operating system that is running on a system.

Answer 2

Fingerprinting

Question 3

___ is an attempt to circumvent various layers of a system or application’s security controls for the purpose of seeing how far into the system the attacker can get.

Answer 3

Penetration testing

Question 4

___ is the act of sending TCPIP packets to various IP addresses and determining which of those addresses are active based on the responses that are received.

Answer 4

Ping sweep

Question 5

1. The “percentage of vulnerabilities not found” metric is a useful way of reporting assessment data.
   TRUE OR FALSE

Answer 5

FALSE

Question 6

2. How many tiers are commonly used for Web sites?
3. 2
4. 1
5. 3
6. 4

Answer 6

3

Question 7

3. The act of fixing vulnerabilities or findings resulting from an assessment is known as ____.

Answer 7

Remediation

Question 8

4. Which of the following activities are considered parts of a Web server OS assessment? (Select two)
5. Identifying the source code author
6. Identifying the patches and updates that have been installed
7. Identifying the services and ports that are active
8. Identifying the databases that are running

Answer 8

Identifying the patches and updates that have been installed

Identifying the services and ports that are active

Question 9

5. Ping sweeps are a part of what process?
6. Code review
7. Discovery
8. Attack vectors
9. Remediation

Answer 9

Discovery

Question 10

6. Web site forms and user input fields are often attacked using cross-site scripting.
   TRUE OR FALSE

Answer 10

TRUE

Question 11

7. Which section of the assessment report is intended to be a high-level briefing of the findings?
8. Summary of findings
9. Vulnerability findings
10. Recommendations
11. Executive summary

Answer 11

Executive summary

Question 12

8. An in-depth security assessment of a Web server application includes performing which of the following?
9. Error-based code compiling
10. OS patching
11. A source code review
12. TCP/IP routing

Answer 12

A source code review

Question 13

9. SQL ___ is an attempt to manipulate a database by inserting commands into a field or URL.

Answer 13

Injection

Question 14

10. Nmap’s primary features include which of the following? (Select three)
11. Password cracking
12. OS fingerprinting
13. Port scanning
14. Code analysis
15. Ping sweeps

Answer 14

OS fingerprinting

Port scanning

Ping sweeps

Question 15

11. What is the purpose of exploiting a vulnerability or fall in a system to gain access to resources not otherwise available to the attacker or tester?
12. Acceleration
13. Enumeration
14. Privilege escalation
15. Field injection

Answer 15

Privilege escalation

Question 16

12. OWASP is the organization know for developing secure application development standards and practices.
    TRUE OR FALSE

Answer 16

TRUE

Question 17

13. Nessus uses thousands of ___ to identify vulnerabilities associated with services, applications, and operating systems.

Answer 17

Plug-ins

Question 18

14. Which attack involves ecployring the files and folders of a Web server by manipulating URLs?
15. Man-in-thee-middle
16. Buffer underflow
17. Brute force password attacks
18. Directory traversal attacks

Answer 18

Directory traversal attacks

Question 19

15. Unauthenticated scanning requires the scanner logging onto the systems being assessed.
    TRUE OR FALSE

Answer 19

FALSE