Which activity would be considered active reconnaissance ?

Running an Nmap scan to identify open ports on a target server

Reviewing job postings for IT staff on a company’s careers page

Collecting email addresses from social media profiles

Searching for past data breaches in public leak databases

First Part

Authored by karim reda

Information Technology (IT)

University

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

10 questions

Show all answers

MULTIPLE CHOICE QUESTION

20 sec • 1 pt

Which of the following is NOT a primary objective of penetration testing?

Identifying weaknesses in systems and applications.

Providing actionable recommendations to improve security posture.

Ensuring compliance with industry standards and regulations.

Maximizing system performance through hardware upgrades.

MULTIPLE CHOICE QUESTION

20 sec • 1 pt

A financial institution conducts a penetration test to verify adherence to PCI-DSS requirements. This aligns with which penetration testing objective?

Identify Weaknesses

Compliance Assurance

Improve Security Posture

Assess Risks

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A penetration tester is given user account credentials and a network diagram before starting the test. Which type of penetration test is this?

White Box Testing

Black Box Testing

Gray Box Testing

External Testing

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which type of penetration test involves evaluating internal vulnerabilities by conducting the test within the organization’s network?

Internal Testing

External Testing

Black Box Testing

Gray Box Testing

MULTIPLE CHOICE QUESTION

20 sec • 1 pt

In the OWASP Testing Framework, which phase involves actively attempting to exploit identified vulnerabilities to determine their real-world impact?

Information Gathering

Threat Modeling

Vulnerability Scanning

Penetration Testing

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

In the NIST SP 800-115 process, which phase focuses on setting clear objectives and defining the boundaries of the test?

Information Gathering and Analysis

Planning and Scoping

Vulnerability Assessment

Reporting and Remediation

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A testing team has finished identifying vulnerabilities and now needs to summarize their findings, provide recommendations, and track remediation efforts. Which NIST SP 800-115 phase is this?

Penetration Testing

Vulnerability Assessment

Reporting and Remediation

Planning and Scoping

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

10 questions

Review - Software Engineering

Quiz

•

University

15 questions

AI in Agriculture Quiz

Quiz

•

9th Grade - University

8 questions

Understanding Web Development Stacks

Quiz

•

11th Grade - University

12 questions

[SE] 4. Software Project Management

Quiz

•

University

15 questions

Quiz on Object-Oriented Systems Analysis and Design

Quiz

•

University

12 questions

[SE] 1. Software Engineering Introduction

Quiz

•

University

11 questions

QUIZ 3: SECURITY TOOLS and VULNERABILITY ANALYSIS

Quiz

•

University

10 questions

Quiz - Foundation of Testing (Testing and System Implementation)

Quiz

•

University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

20 questions

Figurative Language Review

Quiz

•

6th Grade

Discover more resources for Information Technology (IT)

12 questions

IREAD Week 4 - Review

Quiz

•

3rd Grade - University

23 questions

Subject Verb Agreement

Quiz

•

9th Grade - University

7 questions

Force and Motion

Interactive video

•

4th Grade - University

7 questions

Renewable and Nonrenewable Resources

Interactive video

•

4th Grade - University

5 questions

Poetry Interpretation

Interactive video

•

4th Grade - University

19 questions

Black History Month Trivia

Quiz

•

6th Grade - Professio...

15 questions

Review1

Quiz

•

University

15 questions

Pre1

Quiz

•

University

First Part

Which of the following is NOT a primary objective of penetration testing?

A financial institution conducts a penetration test to verify adherence to PCI-DSS requirements. This aligns with which penetration testing objective?

A penetration tester is given user account credentials and a network diagram before starting the test. Which type of penetration test is this?

Which type of penetration test involves evaluating internal vulnerabilities by conducting the test within the organization’s network?

In the OWASP Testing Framework, which phase involves actively attempting to exploit identified vulnerabilities to determine their real-world impact?

In the NIST SP 800-115 process, which phase focuses on setting clear objectives and defining the boundaries of the test?

A testing team has finished identifying vulnerabilities and now needs to summarize their findings, provide recommendations, and track remediation efforts. Which NIST SP 800-115 phase is this?

Which activity would be considered active reconnaissance?

Which phase of the Cyber Kill Chain involves developing malicious tools or exploits to take advantage of identified vulnerabilities?

Which Cyber Kill Chain phase comes immediately after exploitation and typically involves establishing persistence on the target system?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Information Technology (IT)