Penetration Testing Flashcards
1
Q
How does a vulnerability scan differ from a penetration test?
A
Pen tests seek vulnerabilities from the outside looking in and vulnerability scans look at them from the inside looking out.
2
Q
What are the 5 steps of a penetration test?
A
- Get permission and document information about the target network
- Conduct reconnaissance
- Size up the targets to find known vulnerabilities
- Exploit the targets
- Document the results
3
Q
Why do attackers want to pivot to another workstation or user account?
A
It helps them to establish persistence and maintain their foothold inside the network.
4
Q
Define a penetration test
A
A test that uses active tools and security tools to simulate an attack and evaluate security.