CompTIA Security+ 11-20

an application that identifies ports and services that are at risk on a network

an application that identifies ports and services that are at risk on a network

an application that identifies security issues on a network and gives suggestions on how to prevent the issues

an application that detects when network intrusions occur and identifies the appropriate personnel

It allows a more in-depth analysis than other scan types.

It is limited to a particular operating system.

It impacts the hosts and network less than other scan types.

It includes the appropriate permissions for the different data types.

Probing for weaknesses

Infiltrating the network

Interfering with business operations

Exploiting weaknesses

Packet sniffing

Dictionary attack

Password policy

Router with a default password

Resource exhaustion

Race condition

DLL injection

Pointer dereferencing

End-of-life systems

Untrained users

Lack of vendor support

Embedded systems

Default configuration

Improper input handling

Misconfiguration/weak configuration

Improper error handling

a component that is added to a hardware firewall

a firewall that is installed on a server operating system

a firewall that is integrated into a router

a black box device

hardware

application

embedded

software

circuit-level proxy firewall

packet-filtering firewall

stateful firewall

application-level proxy firewall