Multiple Choice
A company contracts a security engineer to perform a penetration test of its client-facing web portal. Which of the following activities would be MOST appropriate?
A) Use a protocol analyzer against the site to see if data input can be replayed from the browser
B) Scan the website through an interception proxy and identify areas for the code injection
C) Scan the site with a port scanner to identify vulnerable services running on the web server
D) Use network enumeration tools to identify if the server is running behind a load balancer
Correct Answer:
Verified
Correct Answer:
Verified
Q232: A security administrator is hardening a TrustedSolaris
Q233: An organization is in the process of
Q234: A security engineer is attempting to convey
Q235: A company's existing forward proxies support software-based
Q236: Following a recent data breach, a company
Q238: A security architect is designing a system
Q239: Given the following code snippet: <img src="https://d2lvgg3v3hfg70.cloudfront.net/C1257/.jpg"
Q240: A security engineer is investigating a compromise
Q241: A consulting firm was hired to conduct
Q242: A security engineer is performing an assessment