Vulnerability Scanning

Question 1

Important to identify vulnerabilities so that they can be mitigated

Answer 1

Identifying Vulnerabilities

Question 2

An evaluation of a system’s security and ability to meet compliance requirements
based on the configuration state of the system as represented by information
collected from the system

Answer 2

Vulnerability Assessment

Question 3

A hardware appliance or software application that is configured with a list of
known weaknesses and exploits and can scan for their presence in a host
operating system or within a particular application

Answer 3

Vulnerability Scanner

Question 4

The range of hosts or subnets included within a single scan job

Answer 4

Scope

Question 5

Vulnerability scans being conducted on your local network
from within your local network

Answer 5

Internal Scanning

Question 6

Vulnerability scans being conducted against your network from
outside of your local network

Answer 6

External Scanning

Question 7

An enumeration or vulnerability scan that analyzes only intercepted network
traffic rather than sending probes to a target

Answer 7

Passive Scanning

Question 8

An enumeration or vulnerability scan that analyzes the responses from probes
sent to a target

Answer 8

Active Scanning

Question 9

The vulnerability scanner is given a user accounts to log-on to the target systems
or hosts

Answer 9

Credentialed Scan

Question 10

The vulnerability scanner sends test packets against a target without logging onto
the system or host

Answer 10

Non-credentialed Scan

Question 11

The vulnerability scanning is launched from one or more scanning servers against
the targets

Answer 11

Server-based Scanning

Question 12

The vulnerability scanning is conducted using a software application installed
locally on each target

Answer 12

Agent-based Scanning

Question 13

Vulnerability scanners must be configured with parameters to be effective in scanning
your network

Answer 13

Scanning Parameters

Question 14

The division of a network into separate zones through the use of VLANs and
subnetting

Answer 14

Segmentation

Question 15

A synchronized list of data and scripts used to check for vulnerabilities, also
known as plug-ins or network vulnerability tests (NVTs)

Answer 15

Vulnerability Feeds

Question 16

A NIST framework that outlines various accepted practices for automating
vulnerability scanning by adhering to standards for scanning processes, results
reporting and scoring, and vulnerability prioritization

Answer 16

Security Content Automation Protocol (SCAP)

Question 17

An XML schema for describing system security state and querying vulnerability
reports and information

Answer 17

Open Vulnerability and Assessment Language (OVAL)

Question 18

An XML schema for developing and auditing best-practice configuration checklists
and rules

Answer 18

Extensible Configuration Checklist Description Format (XCCDF)

Question 19

The amount and intensity of vulnerabilities to test against a target

Answer 19

Scan Sensitivity

Question 20

Used to create and update an inventory of assets by conducting enumeration of
the network and its targets without scanning for vulnerabilities

Answer 20

Discovery Scan

Question 21

A scan that contains options for analyzing hosts for unpatched software
vulnerabilities and configuration issues

Answer 21

Fast/Basic Assessment Scan

Question 22

A comprehensive scan that forces the use of more plug-in types, takes longer for
to conduct host scanning, and has more risk of causing a service disruption

Answer 22

Full/Deep Assessment Scan

Question 23

A scan based on a compliance template or checklist to ensure the controls and
configuration settings are properly applied to a given target or host

Answer 23

Compliance Scans

Question 24

Printers, VoIP phones, and embedded systems components can react unpredictably to any type of scanning

Answer 24

Scanning Risks