Topic 3 Flashcards

1
Q

An attempt to exploit vulnerabilities to determine whether unauthorized access or other malicious activity is possible

A

Penetration Testing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Computer System Servers/Networks, Applications Vulnerabilities

A

Design and implementation
Poor system configuration
Insecure network
System complexity
Human errors - coding errors

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Primary purpose of Penetration Testing

A

To discover vulnerabilities
Test for security compliance
Verify staff awareness

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Phases of Penetration Testing

A

Planning & Reconnaissance
Scanning & Discovery
Exploitation
Risk analysis and Suggestions
Report Generation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Penetration Testing Types

A

Web Application
Network Services
Social Engineering
Client Side

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Types of Penetration Testing Based on Knowledge of Target

A

Black Box testing
Grey Box Testing
White Box Testing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Zero Knowledge of Target

A

Black Box testing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Some Knowledge of Target

A

Grey Box Testing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Full Knowledge of Target

A

White Box Testing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Types of Penetration Testing Based on Position of Penetration Tester

A

External Penetration Testing
Internal Penetration Testing
Targeted
Blind Test
D-Blind

How well did you know this?
1
Not at all
2
3
4
5
Perfectly