Domain 1.5 - Explain vulnerability scanning concepts.

Question 1

Intrusive testing

Answer 1

Involve actually trying to break into the network. Does not take up a lot of resources. (vulnerability scan)

Question 2

Non-Intrusive tests

Answer 2

Involves passively testing of security controls—performing vulnerability scans and probing for weaknesses but not exploiting them. Takes a lot of resources.

Question 3

What is a vulnerability Scan?

Answer 3

Vulnerability scan is a passive attempt to identify weaknesses.

Question 4

What is Nessus?

Answer 4

A popular vulnerability Scanning software

Question 5

Credentialed or authenticated scan

Answer 5

Uses actual network credentials to connect to systems and scan for vulnerabilities.

Question 6

Non-credentialed Or Unauthenticated scan

Answer 6

Although unauthenticated scans will show weaknesses in your perimeter, it will not show you what the attacker will exploit once breaching your perimeter

Question 7

Benefits of unauthenticated scanning

Answer 7

– Not disrupting operations or consuming too many resources
– Definitive list of missing patches
– Client-side software vulnerabilities

Question 8

False positive

Answer 8

Occurs when the scan mistakenly identifies something as a vulnerability when it is not

Question 9

Which of the following types of vulnerability scans uses actual network authentication to connect to systems and scan for vulnerabilities?

A. Credentialed
B. Validated
C. Endorsed
D. Confirmed

Answer 9

A. Credentialed

Question 10

False Negative

Answer 10

when a scan does not reveal a vulnerability that is there.