Lernkarten

Karten 34 Karten
Lernende 7 Lernende
Sprache English
Stufe Andere
Erstellt / Aktualisiert 20.02.2018 / 19.10.2020
Lizenzierung Kein Urheberrechtsschutz (CC0)     (caaac)
Weblink
Einbinden
0 Exakte Antworten 34 Text Antworten 0 Multiple Choice Antworten
Fenster schliessen

Give a reason why penetration test methologies are needed.

- Improve chances of successfully completing penetration testing method

Fenster schliessen

List and briefly describe the five process groups in the Project Management Book of Knowledge (PMBOK)

–Initiating (gain approval for project, let client know whats included/excluded, identify stakeholders)
–Planning (duration of project, size of team, cost of project, resources needed)
–Executing (attacks are conducted)
–Closing (final documents released to client, contractual agreement concluded, closing process)
–Monitoring and Controlling (watch out for changes that need to be managed)

Fenster schliessen

Why discuss the PMBOK, when the PMBOK has nothing to do with penetration testing?

As penetration testing is a project itself, the standardized project management practices of PMBOK are of great help when performing pen testing.

Fenster schliessen

State and briefly describe the three phases in Information System Security Assessment Framework (ISSAF)

Phase 1: Planning & Preperation (exchange information, plan and prepare for the test)

Phase 2: Apply layers to the following targets: Networks, Hosts, Applications, Databases.

Phase 3: Generating reports and securing data that was obtained during the test.

Fenster schliessen

List the advantages and disadvantages of using ISSAF in penetration testing

•Advantages
–Does not assume previous knowledge.
–Provides examples of penetration test tool use.


•Disadvantages
–Out of date quickly.
–Penetration test tool examples are not extensive.
–Last update: May 2006

Fenster schliessen

List and briefly describe the six common test types for Open Source Security Testing Methodology Manual (OSSTMM)

Blind: Analyst no knowlede of defenses, assets or channels. Target is prepared.

Double Blind: Analyst no knowledge of defenses, assets or channels. Target is not notified in advance.

Grey Box: Analyst limited knowledge of defenses and assets, full knowledge of channels. Target is prepared

Double Grey Box: Analyst limited knowledge of defenses and assets, full knowledge of channels. Target is notified about scope and time frame, but not channels and vectors.

Tandem: Analyst and Target both prepaired knowing all the details.

Reversal: Analyst full knowledge. Target no knowledge.

Fenster schliessen

List and briefly describe the six error types in OSSTMM

False Positive:

Taret response indicates state as true, but in reality is not true.

False Negative:

Target response indicates state as no true, but in reality is true.

Gray Positive:

Target response indicates state as true, however target is designed to always respond with this state.

Gray Negative:

Target response indicates state as not true, however target is designed to always respond with this state.

Specter:

Target response indicates state as true or not true, but in reality it cannot be known.

Indiscretion:

Target response indicates state as true or false but only during particular time.

Entropy Error:

Target response cannot indicate state as true or false due to a high noise to signal ratio.

Falsification:

Target response indicates state as either true or false although in reality it is dependent on largely unknown variables.

Fenster schliessen

List the advantages and disadvantages of using OSSTMM in penetration testing.

•Advantages
–More flexibility for Pentesters.
–Frequent updates.
•Disadvantages
–Assumes tester have necessary knowledge beforehand.
–Latest version requires paid subscription.