Question 1

What is the SANS Institutes "Top 25 Software Errors" list?

Accepted Answer

One of the most popular SANS Institute d

Question 2

Match each item with a statement below.
-Analysis of a company's security policy and procedures followed with a report disclosing any vulnerabilities to management

Accepted Answer

A) script kiddies 
B) red team 
C) black box model 
D) crackers 
E) vulnerability assessment
F)security test
G)hacker
H)gray box model
I)ethical hacker
J)penetration test 
A) script kiddies 
B) red team 
C) black box model 
D) crackers 
E) vulnerability assessment
F)security test
G)hacker
H)gray box model
I)ethical hacker
J)penetration test

Question 3

Match each item with a statement below.
-An ethical attempt to break into a company's network or applications to find weak links

Accepted Answer

A) script kiddies 
B) red team 
C) black box model 
D) crackers 
E) vulnerability assessment
F)security test
G)hacker
H)gray box model
I)ethical hacker
J)penetration test 
A) script kiddies 
B) red team 
C) black box model 
D) crackers 
E) vulnerability assessment
F)security test
G)hacker
H)gray box model
I)ethical hacker
J)penetration test

Question 4

What penetration model should a company use if they only want to allow the penetration tester(s)partial or incomplete information regarding their network system?

Accepted Answer

A)  gray box 
B)  white box 
C)  black box 
D)  red box 
A)  gray box 
B)  white box 
C)  black box 
D)  red box

Question 5

What common term is used by security testing professionals to describe vulnerabilities in a network?

Accepted Answer

A)  bytes 
B)  packets 
C)  bots 
D)  holes 
A)  bytes 
B)  packets 
C)  bots 
D)  holes

Question 6

What professional security certification requires applicants to demonstrate hands-on abilities to earn their certificate?

Accepted Answer

A)  Offensive Security Certified Professional 
B)  Certified Ethical Hacker 
C)  Certified Information Systems Security Professional 
D)  CompTIA Security+ 
A)  Offensive Security Certified Professional 
B)  Certified Ethical Hacker 
C)  Certified Information Systems Security Professional 
D)  CompTIA Security+

Question 7

Match each item with a statement below.
-An attempt to identify all the unprotected areas found in an application or on a system

Accepted Answer

A) script kiddies 
B) red team 
C) black box model 
D) crackers 
E) vulnerability assessment
F)security test
G)hacker
H)gray box model
I)ethical hacker
J)penetration test 
A) script kiddies 
B) red team 
C) black box model 
D) crackers 
E) vulnerability assessment
F)security test
G)hacker
H)gray box model
I)ethical hacker
J)penetration test

Question 8

Many experienced penetration testers will write a set of instructions that runs in sequence to perform tasks on a computer system.What type of resource are these penetration testers utilizing?

Accepted Answer

A)  kiddies 
B)  packets 
C)  scripts 
D)  tasks 
A)  kiddies 
B)  packets 
C)  scripts 
D)  tasks

Question 9

What specific term does the U.S.Department of Justice use to label all illegal access to computer or network systems?

Accepted Answer

A)  Hacking 
B)  Cracking 
C)  Security testing 
D)  Packet sniffing 
A)  Hacking 
B)  Cracking 
C)  Security testing 
D)  Packet sniffing

Question 10

Why are ethical hackers employed or contracted by a company to conduct vulnerability assessments,penetration tests,and security tests?

Accepted Answer

Companies need to know what,if any,parts

What is the SANS Institutes "Top 25 Software Errors" list?

Match each item with a statement below. -Analysis of a company's security policy and procedures followed with a report disclosing any vulnerabilities to management

Match each item with a statement below. -An ethical attempt to break into a company's network or applications to find weak links

What penetration model should a company use if they only want to allow the penetration tester(s)partial or incomplete information regarding their network system?

What common term is used by security testing professionals to describe vulnerabilities in a network?

What professional security certification requires applicants to demonstrate hands-on abilities to earn their certificate?

Match each item with a statement below. -An attempt to identify all the unprotected areas found in an application or on a system

Many experienced penetration testers will write a set of instructions that runs in sequence to perform tasks on a computer system.What type of resource are these penetration testers utilizing?

What specific term does the U.S.Department of Justice use to label all illegal access to computer or network systems?

Why are ethical hackers employed or contracted by a company to conduct vulnerability assessments,penetration tests,and security tests?

Tcpip Concepts Review

Network and Computer Attacks

Footprinting and Social Engineering

Port Scanning

Enumeration

Programming for Security Professionals

Desktop and Server Os Vulnerabilities

Embedded Operating Systems: the Hidden Threat

Hacking Web Servers

Hacking Wireless Networks

Cryptography

Network Protection Systems

Filters

Exam 1: Ethical Hacking Overview

What is the SANS Institutes "Top 25 Software Errors" list?

Match each item with a statement below. -Analysis of a company's security policy and procedures followed with a report disclosing any vulnerabilities to management

Match each item with a statement below. -An ethical attempt to break into a company's network or applications to find weak links

What penetration model should a company use if they only want to allow the penetration tester(s)partial or incomplete information regarding their network system?

What common term is used by security testing professionals to describe vulnerabilities in a network?

What professional security certification requires applicants to demonstrate hands-on abilities to earn their certificate?

Match each item with a statement below. -An attempt to identify all the unprotected areas found in an application or on a system

Many experienced penetration testers will write a set of instructions that runs in sequence to perform tasks on a computer system.What type of resource are these penetration testers utilizing?

What specific term does the U.S.Department of Justice use to label all illegal access to computer or network systems?

Why are ethical hackers employed or contracted by a company to conduct vulnerability assessments,penetration tests,and security tests?

Tcpip Concepts Review

Network and Computer Attacks

Footprinting and Social Engineering

Port Scanning

Enumeration

Programming for Security Professionals

Desktop and Server Os Vulnerabilities

Embedded Operating Systems: the Hidden Threat

Hacking Web Servers

Hacking Wireless Networks

Cryptography

Network Protection Systems

Filters