Identify the framework that comprises of five levels to guide agency assessment of their security programs and assist in
prioritizing efforts for improvement:

Vulnerability assessment is an examination of the ability of a system or application, including current security
procedures and controls, to withstand assault. It recognizes, measures, and classifies security vulnerabilities in a
computer system, network, and communication channels.
A vulnerability assessment is used to identify weaknesses that could be exploited and predict the effectiveness of
additional security measures in protecting information resources from attack.

Which of the following vulnerability assessment technique is used to test the web server infrastructure for any
misconfiguration and outdated content?

Information gathering is performed to:
i) Collect basic information about the target company and its network
ii) Determine the operating system used, platforms running, web server versions, etc.
iii) Find vulnerabilities and exploits

Which of the following pen testing tests yields information about a company’s technology infrastructure?

In the TCP/IP model, the transport layer is responsible for reliability and flow control from source to the destination. TCP provides the mechanism for flow control by allowing the sending and receiving hosts to communicate. A flow control mechanism avoids the problem with a transmitting host overflowing the buffers in the receiving host.

A firewall protects networked computers from intentional hostile intrusion that could compromise confidentiality or result in data corruption or denial of service. It examines all traffic routed between the two networks to see if it meets certain criteria. If it does, it is routed between the networks, otherwise it is stopped.

Why is an appliance-based firewall is more secure than those implemented on top of the commercial operating system
(Software based)?

Metasploit framework in an open source platform for vulnerability research, development, and penetration testing.
Which one of the following metasploit options is used to exploit multiple systems at once?

By default, the TFTP server listens on UDP port 69. Which of the following utility reports the port status of target TCP
and UDP ports on a local or a remote computer and is used to troubleshoot TCP/IP connectivity issues?

SQL injection attack consists of insertion or "injection" of either a partial or complete SQL query via the data input or
transmitted from the client (browser) to the web application. A successful SQL injection attack can:
i) Read sensitive data from the database
iii) Modify database data (insert/update/delete)
iii) Execute administration operations on the database (such as shutdown the DBMS)
iV) Recover the content of a given file existing on the DBMS file system or write files into the file system
v) Issue commands to the operating system


Pen tester needs to perform various tests to detect SQL injection vulnerability. He has to make a list of all input fields
whose values could be used in crafting a SQL query, including the hidden fields of POST requests and then test them
separately, trying to interfere with the query and to generate an error.
In which of the following tests is the source code of the application tested in a non-runtime environment to detect the
SQL injection vulnerabilities?