CISSP · Question #836
When planning a penetration test, the tester will be MOST interested in which information?
The correct answer is D. Exploits that can attack weaknesses. When planning a penetration test, the tester will be most interested in the exploits that can attack the weaknesses of the target system or network. Exploits are the techniques or tools that take advantage of the vulnerabilities to compromise the security or functionality of the
Question
Options
- APlaces to install back doors
- BThe main network access points
- CJob application handouts and tours
- DExploits that can attack weaknesses
How the community answered
(22 responses)- A5% (1)
- B5% (1)
- C9% (2)
- D82% (18)
Explanation
When planning a penetration test, the tester will be most interested in the exploits that can attack the weaknesses of the target system or network. Exploits are the techniques or tools that take advantage of the vulnerabilities to compromise the security or functionality of the system or network. The tester will use the exploits to simulate a real attack and test the effectiveness of the security controls and defenses.
Topics
Community Discussion
No community discussion yet for this question.