nerdexam
(ISC)2

CISSP · Question #361

Which of the following techniques is known to be effective in spotting resource exhaustion problems, especially with resources such as processes, memory, and connections?

The correct answer is D. Fuzzing. Fuzzing is a technique that is known to be effective in spotting resource exhaustion problems, especially with resources such as processes, memory, and connections. Fuzzing is a type of testing that involves sending random, malformed, or unexpected input to the system or applicat

Submitted by yuki_2020· Mar 5, 2026Security Assessment and Testing

Question

Which of the following techniques is known to be effective in spotting resource exhaustion problems, especially with resources such as processes, memory, and connections?

Options

  • AAutomated dynamic analysis
  • BAutomated static analysis
  • CManual code review
  • DFuzzing

How the community answered

(27 responses)
  • B
    4% (1)
  • C
    7% (2)
  • D
    89% (24)

Explanation

Fuzzing is a technique that is known to be effective in spotting resource exhaustion problems, especially with resources such as processes, memory, and connections. Fuzzing is a type of testing that involves sending random, malformed, or unexpected input to the system or application, and observing its behavior and response. Fuzzing can help to identify resource exhaustion problems, such as memory leaks, buffer overflows, or connection timeouts, which can affect the availability, functionality, or security of the system or application. Fuzzing can also help to discover other types of vulnerabilities, such as logic errors, input validation errors, or exception handling errors. Automated dynamic analysis, automated static analysis, and manual code review are not techniques that are known to be effective in spotting resource exhaustion problems, although they may be used for other types of testing or analysis.

Topics

#Fuzzing#Dynamic analysis#Resource exhaustion#Vulnerability testing

Community Discussion

No community discussion yet for this question.

Full CISSP Practice