PEN TEST

You've hired a third-party to gather information about your company's servers and data. The third-party will not have direct access to your internal network but can gather information from any other source. Which of the following would BEST describe this approach?

Information that becomes unavailable, either permanently or temporarily, is known as...

A security team has been provided with a non-credentialed vulnerability scan report created by a third-party. Which of the following would they expect to see on this report?

A company has just purchased a new application server, and the security director wants to determine if the system is secure. The system is currently installed in a test environment and will not be available to users until the rollout to production next week. Which of the following would be the BEST way to determine if any part of the system can be exploited?

A security analyst received an alert from their IPS regarding active exploit attempts from the Internet. Which of the following would provide the most detailed information about these exploit attempts?

Which of the following would be a common result of a successful vulnerability scan?

What cybersecurity technique is designed to detect the presence of threats that have not been discovered by normal security monitoring?

A company is contracting with a third-party to find vulnerabilities that employees could possibly exploit on the company’s internal networks. Which of the following would be the BEST way for the third-party to meet this requirement?

Which of the following commands would be the MOST appropriate to view the IP address and FQDN of a remote host?

A security administrator is researching the methods used by attackers to gain access to web servers. Which of the following would provide additional information about these techniques?