Security + Penetration Testing Flashcards
Penetration testing
a simulated cyber attack against your computer system to check for exploitable vulnerabilities
Black-hat hacking
a computer hacker who violates laws or ethical standards for nefarious purposes, such as cybercrime, cyberwarfare, or malice. These acts can range from piracy to identity theft. A Black hat is often referred to as a “cracker”.
White-box testing
*a form of application testing * that provides the tester with complete knowledge of the application being tested, including access to source code and design documents.
Black-box testing
a method of software testing that *examines the functionality of an application *without peering into its internal structures or workings.
****White-hat hacking
white hat hacker – or ethical hacker – is an individual who uses hacking skills to identify security vulnerabilities in hardware, software or networks
grey-hat hacking
enact a blend of both black hat and white hat activities. Gray hat hackers often look for vulnerabilities in a system without the owner’s permission or knowledge.
grey-box hacking
refers to the testing of software where there is some limited knowledge of its internal workings.
War chalking
occurs when people draw symbols in areas to indicate the presence of an open Wi-Fi network. The symbols used typically say something about the access point
War driving
the act of looking for publicly accessible Wi-Fi networks
, usually from a moving vehicle, using a laptop or smartphone.
Insider threat
the threat that an insider will use their authorized access, wittingly or unwittingly, to do harm to the department
white team
In cybersecurity exercises, the role of an event overseer (i.e. the referee)
Reconnaissance
the first phase of a penetration testing engagement
