COMPUTER NETWORKS AND COMMUNICATIONS
NETWORK SECURITY AND CYBERSECURITY
|
Question
[CLICK ON ANY CHOICE TO KNOW THE RIGHT ANSWER]
|
|
|
True
|
|
|
False
|
|
|
Either A or B
|
|
|
None of the above
|
Detailed explanation-1: -A black box pen test starts with no prior knowledge and zero access to the target. A gray box pentest involves some level of knowledge and some access to the target. A white box pen test grants the security consultant the highest knowledge and access to the target.
Detailed explanation-2: -The methodology of penetration testing is split into three types of testing: black-box assessment, white-box assessment, and gray-box assessment.
Detailed explanation-3: -Types of Pen Testing: Black Box, White Box & Grey Box.
Detailed explanation-4: -Ideally, most penetration tests would be black-box, since it most closely resembles how a hacker approaches a network. However, time constraints and the desire to detect and remediate vulnerabilities inside the perimeter as well has led to the creation of gray-box and white-box penetration testing methodologies.
Detailed explanation-5: -A penetration test (pen test) is an authorized simulated attack performed on a computer system to evaluate its security. Penetration testers use the same tools, techniques, and processes as attackers to find and demonstrate the business impacts of weaknesses in a system.