Keywords

Question 1

What is a pen test

Answer 1

Penetration, testing, attempt to exploit vulnerabilities in order to help, strengthen the security systems of an organization by displaying their weaknesses.
This provides a clear picture of their nature as well.

Question 2

What are the three different types of information security?

Answer 2

Confidential

Approved individuals may access information
Availability

Insurance information is accessible to all authorized members
Integrity

insures information is correct and unaltered

Question 3

What is an advanced persistent threat? APT

Answer 3

Detects use innovative tools, and once a system is infected, they silently extract data over an extended period of time(persistent). APTs are most commonly associated with state actors.

Question 4

Threat actor

Answer 4

An individual or entity responsible for cyber incidence against the technology equipment of enterprises and users

Question 5

Script kiddies

Answer 5

Individuals who want to perform attack yet like technical knowledge to carry them out
They can be found download in through the available, automated software, and use it to attack

Question 6

Hacktivists

Answer 6

Individuals that are strongly motivated by ideology, for the sake of their principles or beliefs

Question 7

State actors

Answer 7

Governments are increasingly employing their own state, sponsored attackers for launching cyber attacks against foes

Many security researchers, think that they are the deadliest of any threat actors

State actors are often involved in multiyear intrusion campaigns targeting highly sensitive, economic, proprietary, or national security information.

Question 8

Insiders

Answer 8

Employees, contractors, and business partners compose an insider threat of manipulating data from the position of a trusted employee.

These attacks are harder to recognize because they come from within the enterprise.

Question 9

What is a creep

Answer 9

And expansion beyond the initial set of the test limitations

Question 10

What is phase 1 of a penetration test called?

Answer 10

Reconnaissance

Question 11

What are the two parts of phase 1 of a penetration test?

Answer 11

Active and passive reconnaissance

Question 12

What is active reconnaissance?

Answer 12

Involves directly probing for vulnerabilities and useful information

Question 13

What is passive reconnaissance?

Answer 13

Passive reconnaissance occurs when the tester uses tools that do not raise any alarms.

This may include searching online for publicly accessible information called open source intelligence (OSINT) that can reveal valuable insight about the system

Question 14

What is phase 2 of a penetration test called?
And what is it?

Answer 14

Penetration

A pen test is intended to stimulate the actions of threat actor

Question 15

Footprinting

Answer 15

To perform preliminary information gathering from outside the organization

Question 16

What are the rules of engagement ?

Answer 16

These are the limitations or parameters of a pen test

A penetration test can easily veer off course and not accomplish the desired results, take too long to produce timely, results, or test assets that are not necessary to test

Question 17

What is the timing parameter?

Answer 17

When the test will occur. Usually consisting of start dates of the test.

The time of the test subject to change based on the vulnerabilities found within the test .

Question 18

What is the scope of a pen test?

Answer 18

The scope of a pen test is what should be tested

Scope involves several elements that defined the relevant test boundaries. These test elements include the following technical boundaries.

Environment should the pen test be conducted on the live production environment?

This option has the advantage of producing the most accurate test, however, the disadvantage is that it would likely disrupt the normal business operations. As an alternative, a simulated environment could be created but this option comes with additional work and costs.

Internal targets. Before starting a penetration test, all internal targets must be identified clearly for an external third-party gray box test or white box test (blackbox testers are responsible for finding internal targets ).
These internal targets are owned by the customer, and information about them, may include specific, IP addresses, network, ranges, or domain names. Also, the scope of internal targets must account for system, such as firewalls, intrusion detection, systems, intrusion prevention, systems, and networking equipment between the tester and the final target.

Question 19

External targets (scope)

Answer 19

External targets have to deal with penetration testing a service, her application by a third-party, like cloud, service, providers, or Internet service providers

Question 20

Target locations (scope)

Answer 20

Because laws vary among states, provinces, and countries, testing planners, must identify the physical location of the targets, and, if necessary, I just discover the test.

Question 21

Authorization pen test

Answer 21

The receipt of prior written approval to conduct the Pentecost. Formal written document must be signed by all parties before a penetration test begins. Naturally, disapproval includes people within the organization being tested however, other levels of authorization are frequently overlooked.

Question 22

What is a vulnerability scan?

Answer 22

A frequent and ongoing process that continuously identify the monitor Cybersecurity progress

Question 23

What does conducting a vulnerability scan involve?

Answer 23

Knowing what to scan and how often?
Selecting the appropriate type of scan
Interpreting vulnerability information

Question 24

Why shouldn’t you conduct around the clock vulnerability scans? (Two reasons.)

Answer 24

Workflow interruptions
Technical constraints
A more focused approach is to know the location of data, so that specific systems with high value data can be scanned more frequently .

Question 25

A vulnerability skin should be limited, what configurations review of software settings should be conducted?

Answer 25

Define. group of target devices to be scanned
Ensure. That a scan should be designed to meet its intended goals.
Determine. The sensitivity level or depth of a scan.
Specify . The data types to be scanned.

Question 26

What are the two major types of vulnerability scans?

Answer 26

Credentialed scan which is invalid, authentication credentials that are supplied to the vulnerability scanner to mimic the work of a threat actor, who possesses these credentials
A non-credential scan provides no such authentication information

An intrusive scan Attempts to employ any vulnerabilities that it finds
A non-intrusive scan does not attempt to exploit the vulnerability but only records that it was discovered

Question 27

What is the best approach for vulnerability scanning?

Answer 27

Do not scan all the systems at the same time.

Question 28

Regulatory compliance

Answer 28

Is the process of adhering to regulations
Industry regulations are typically developed by established professional organizations or government agencies, using the expertise of seasoned security professionals

Question 29

What is threat hunting?

Answer 29

Proactively, searching for cyber threats that thus far has gone and detected In a network

Threat hunting investigation often uses crowdsourced attack data such as

Advisories and bulletins
Cyber security threat feeds are data feeds of information on the latest threats

Information from a fusion center: one repository of information from enterprises is used to share information on the latest attacks

Question 30

What is a data management tool that has the features of:

Aggregation
Correlation
Automated an alerting triggers
Time synchronization
Event duplication
Logs

Answer 30

Security Information and event Management (SIEM)

Question 31

Sentiment analysis

Answer 31

The process of computationally identifying and categorizing options to determine the writers attitude toward a particular topic : this is something that (SIEMS) can preform.

Sentiment analysis has been used when tracking postings threat actors make a discussion forms threat actors make in discussion forums with other attackers to better determine the behavior and mindset of the threat actors

Question 32

Security Orchestration Automation Response (SOAR)

Answer 32

A SIEM is similar to a SOAR in that it is designed to have security teams, manage and respond to security warnings and alarms
SOARs combine more comprehensive data gathering, and analytics to automate incident responses