Q. ____________ scans TCP ports and resolves different hostnames.

View solution

Q. ___________ is a web application assessment security tool.

View solution

Q. Which of the following attack-based checks WebInspect cannot do?

View solution

Q. ________ is a password recovery and auditing tool.

View solution

Q. L0phtCrack is formerly known as LC3.

View solution

Q. ___________ is a weakness that can be exploited by attackers.

View solution

Q. _________ is the sum of all the possible points in software or system where unauthorized users can enter as well as extract data from the system.

View solution

Q. ____________ is the cyclic practice for identifying & classifying and then solving the vulnerabilities in a system.

View solution

Q. Risk and vulnerabilities are the same things.

View solution

Q. _____________ is a special type of vulnerability that doesn’t possess risk.

View solution

Q. A/An __________ is a piece of software or a segment of command that usually take advantage of a bug to cause unintended actions and behaviors.

View solution

Q. There are ________ types of exploit.

View solution

Q. Remote exploits is that type of exploits acts over any network to exploit on security vulnerability.

View solution

Q. ________ type of exploit requires accessing to any vulnerable system for enhancing privilege for an attacker to run the exploit.

View solution

Q. ___________ is a technique used by penetration testers to compromise any system within a network for targeting other systems.

View solution

Q. A _________ is a software bug that attackers can take advantage to gain unauthorized access in a system.

View solution

Q. Security bugs are also known as _______

View solution

Q. __________ is the timeframe from when the loophole in security was introduced till the time when the bug was fixed.

View solution

Q. ISMS is abbreviated as __________

View solution

Q. A zero-day vulnerability is a type of vulnerability unknown to the creator or vendor of the system or software.

View solution