Multiple Choice
A business manager is arguing with a compliance officer that a pentest would never be necessary for this company since they use single sign on authentication throughout. You are asked for your opinion, and say "IF I can access a network physically I can own it". This sounds a little extreme, but what is not true about this assertion?
A) Booting up to an alternative operating system might allow you to circumvent the local authentication, compromise a credential store, or steal critical data
B) Not being able to login would prevent your host from obtaining network configurations such as an IP address, routing and DNS settings. But sniffing is still possible.
C) There are ways of detecting the presence of new systems on the network such as rogue infrastructure. These techniques should still be tested regularly
D) Physical security is always critical and along with user training should be a constantly run program
Correct Answer:
Verified
Correct Answer:
Verified
Q36: Which of the following protects the rights
Q37: What are the 6 principles of social
Q38: Which of the following is considered to
Q39: Which of the following statements is the
Q40: You are conducting a test and got
Q42: During an internal pentest, you setup a
Q43: What is the most common method of
Q44: During a pentest, you notice the organization
Q45: Dave wants to steal the contact database
Q46: Karen gets hired on with disrupttheprocess.org to