100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
PEN Testing Final UPDATED Actual Exam Questions and CORRECT Answers $9.99   Add to cart

Exam (elaborations)

PEN Testing Final UPDATED Actual Exam Questions and CORRECT Answers

 3 views  0 purchase
  • Course
  • PEN Testing
  • Institution
  • PEN Testing

PEN Testing Final UPDATED Actual Exam Questions and CORRECT Answers Ryan is conducting a penetration test and is targeting a database server. Which one of the following tools would best assist him in detecting vulnerabilities on that server? - CORRECT ANSWER- sqlmap Which of the following t...

[Show more]

Preview 3 out of 20  pages

  • September 15, 2024
  • 20
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers
  • PEN Testing
  • PEN Testing
avatar-seller
MGRADES
PEN Testing Final UPDATED Actual
Exam Questions and CORRECT Answers
Ryan is conducting a penetration test and is targeting a database server. Which one of the
following tools would best assist him in detecting vulnerabilities on that server? - CORRECT
ANSWER- ✔✔sqlmap


Which of the following threat actors is the most dangerous based on the adversary tier list? -
CORRECT ANSWER- ✔✔APTs


Joe is examining the logs for his web server and discovers that a user sent input to a web
application that contained the string WAITFOR. What type of attack was the user likely
attempting? - CORRECT ANSWER- ✔✔Timing-based SQL injection


During a penetration test, Mike uses double tagging to send traffic to another system. What
technique is he attempting? - CORRECT ANSWER- ✔✔VLAN hopping



What does an MSA typically include? - CORRECT ANSWER- ✔✔The terms that will
govern future agreements.


What type of legal assessment typically covers sensitive data and information that a
penetration tester may encounter while performing an assessment? - CORRECT ANSWER-
✔✔an NDA


What penetration testing strategy is also known as "zero knowledge" testing? - CORRECT
ANSWER- ✔✔Black box testing


Which one of the following protocols should never be used on a public network? -
CORRECT ANSWER- ✔✔Telnet


Examine the following network diagram. What is the most appropriate location for a web
application firewall (WAF) on this network? - CORRECT ANSWER- ✔✔Location D



Which of the following is a static code analysis tool? - CORRECT ANSWER- ✔✔YASCA

,Which one of the following is NOT a password cracking utility? - CORRECT ANSWER-
✔✔OWASP ZAP


Chris runs an Nmap scan against the 10.10.0.0/16 network that his employer uses as an
internal network range for the entire organization. If he uses the -T0 flag, what issue is he
likely to encounter? - CORRECT ANSWER- ✔✔The scan will progress at a very slow speed.


Which one of the following values for the confidentiality, integrity, or availability CVSS
metric would indicate the potential for a total compromise of a system? - CORRECT
ANSWER- ✔✔C


Kevin recently identified a new security vulnerability and computed the CVSSv2 base score
as 6.5. Which risk category would this vulnerability fall into? - CORRECT ANSWER-
✔✔High


Which of the following is NOT a reason to conduct periodic penetration tests of systems and
applications? - CORRECT ANSWER- ✔✔Cost


What is required for Jason to conduce a cold-boot attack against a system? - CORRECT
ANSWER- ✔✔Physical access


Which of the following is NOT a benefit of using an internal penetration test team. -
CORRECT ANSWER- ✔✔Independence


Tara recently analyzed the results of a vulnerability scan report and found that a vulnerability
reported by the scanner did not exist because the system was actually patched as specified.
What type of error occurred? - CORRECT ANSWER- ✔✔False positive


Jack is conducting a penetration test for a customer in Japan. What NIC is he most likely to
need to check for information about his client's networks? - CORRECT ANSWER-
✔✔APNIC


Which one of the following activities assumes that an organization has already been
compromised? - CORRECT ANSWER- ✔✔Threat hunting

, Which one of the following tools is an exploitation framework commonly used by
penetration testers? - CORRECT ANSWER- ✔✔Metasploit


Which of the following is a debugging tool compatible with Linux systems? - CORRECT
ANSWER- ✔✔GDB


Beth recently conducted a phishing attack against a penetration testing target in an attempt to
gather credentials that she might use in later attacks. What stage in the penetration testing
process is Beth in? - CORRECT ANSWER- ✔✔Attacking and Exploiting


Renee is configuring her vulnerability management solution to perform credentialed scans of
servers on her network. What type of account should she provide to the scanner? -
CORRECT ANSWER- ✔✔Read-only



Where are the LSA Secrets stored on a Windows system? - CORRECT ANSWER- ✔✔The
Registry


During the scoping phase of a penetration test, Lauren is provided with the IP range of the
systems she will test, as well as information about what the systems run, but she does not
recieve a full network diagram. What type of assessment is she most likely conducting? -
CORRECT ANSWER- ✔✔A gray box assessment


Which of the following tools provides information about a domain's registrar and physical
location? - CORRECT ANSWER- ✔✔WHOIS


Rick wants to look at the advertised routes to his target. What type of service should he look
for to do this? - CORRECT ANSWER- ✔✔A BGP looking glass


What technique is being used in the following command:

host -t axfr domain.com dns1.domain.com - CORRECT ANSWER- ✔✔Zone transfer

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller MGRADES. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $9.99. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

84146 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$9.99
  • (0)
  Add to cart