100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
CREST CPSA EXAM 300 QUESTIONS AND CORRECT ANSWERS LATEST update. $14.49   Add to cart

Exam (elaborations)

CREST CPSA EXAM 300 QUESTIONS AND CORRECT ANSWERS LATEST update.

 7 views  0 purchase
  • Course
  • CREST CPSA
  • Institution
  • CREST CPSA

CREST CPSA EXAM 300 QUESTIONS AND CORRECT ANSWERS LATEST update. What port does squid proxy use?-Ans:-3128 What are the benefits of a penetration test?-Ans:-- Enhancement of the management system - Avoid fines - Protection from financial damage - Customer protection What is the stru...

[Show more]

Preview 4 out of 58  pages

  • August 4, 2024
  • 58
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers
  • crest cpsa exam 2024
  • CREST CPSA
  • CREST CPSA
avatar-seller
Nurslink
CREST CPSA EXAM 300 QUESTIONS AND CORRECT ANSWERS

LATEST 2024-2025 update.

What port does squid proxy use?-Ans:-3128


What are the benefits of a penetration test?-Ans:--
Enhancement of the management system
- Avoid fines
- Protection from financial damage
- Customer protection

What is the structure of a penetration test?
-ANS:-Planning and PreparationReconnaissance
Discovery
Analyzing information and risksActive intrusion
attempts
Final analysis Report
Preparation


What is another structure of a penetration test?
-ANS:-ReconnaissanceVulnerability
Scanning Investigation
Exploitation

, 3




What is does infrastructure testing include?
-ANS:-Includes all internal computer systems, associatedexternal devices, internet
networking, cloud and virtualization testing.


What are the types of infrastructure testing?-Ans:--
External Infrastructure Penetration Testing
- Internal Infrastructure Penetration Testing
- Cloud and Virtualization Penetration Testing
- Wireless Security Penetration Testing

What does External Infrastructure Testing include?
-ANS:-Mapping flaws in the external infrastructure


What are the benefits of External Infrastructure Testing ?
-ANS:-- Identifies flaws within the firewall configuration thatcould be misused.
- Finds how information could be leaked out from the system
- Suggests how these issues could be fixed
- Prepares a comprehensive report highlighting the security risk ofthe networks and
suggests solutions
- Ensures overall efficiency and productivity of your business


What are the benefits of Internal Infrastructure testing?
-ANS:--Identifies how an internal attacker could takeadvantage of even a minor
security flaw
- Identifies the potential business risk and damage that an internalattacker can inflict
- Improves security systems of internal infrastructure
- Prepares a comprehensive report giving details of the security exposures of internal
networks along with the detailed action planon how to deal with it


What are the benefits of cloud and virtualization penetrationtesting? -ANS:--
Discover the real risks within the

, 4




virtual environment and suggests the methods and costs to fix thethreats and flaws
- Provides guidelines and an action plan how to resolve the issues
- Improves the overall protection systems
- Prepares a comprehensive security system report of the cloud computing and
virtualization, outline the security flaws, causesand possible solutions


What are the benefits of wireless security penetration testing ? - --
- -ANS:-- To find the potential risk caused by your wirelessdevice
- To provide guidelines and an action plan on how to protect fromthe external threats
- For preparing a comprehensive security system report of thewireless networking, to
outline the security flaw, causes, and possible solutions


What is Black Box Testing? -ANS:-Black-box testing is a method in which the tester is
provided no information about theapplication being tested.


What are the advantages of Black Box Testing?
-ANS:-- Test is generally conducted with the perspective ofa user, not the designer
- Verifies contradictions in the actual system and thespecifications

What are the disadvantages of black box penetration testing?
-ANS:-- Particularly, these kinds of test cases are difficultto design
- Possibly, it is not worth, in-case designer has already conducteda test case
- It does not conduct everything

, 5




What is white box penetration testing ? -ANS:-A tester is provided a whole range of
information about the systems and/ornetwork such as schema, source code, os details, ip
address, etc.


What are the advantages of white box penetration testing?
-ANS:-- It ensures that all independent paths of a modulehave been exercised
- It ensures that all logical decisions have been verified along withtheir true and false value.
- It discovers the typographical errors and does syntax checking
- It finds the design errors that may have occurred because of thedifference between
logical flow of the program and the actual execution.


What are the important highlights of the computer misuse act1990? -ANS:-Section
1: Unauthorized access to computer material
Section 2: Unauthorized access with intent to commit or facilitatecommission of further
offenses
Section 3: Unauthorized acts with intent to impair, or withrecklessness as to
impairing the operation of a computer


Unauthorized modification of computer material


What are the important highlights of the human rights act 1998? -
--- -ANS:-- The right to life
- The right to respect for private and family life
- The right to freedom of religion and belief
- Your right not to be mistreated or wrongly punished by the state

when capturing the scope of a penetration test, what information requires consent to meet
the UK laws?-Ans:--Name &
Position of the individual who is providing consent
-Authorized testing period - both the date range and hours thattesting is permitted

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller Nurslink. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $14.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

72042 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$14.49
  • (0)
  Add to cart