Penetration Testing & Analyzing Vulnerabilities

Question 1

Penetration Testing

Answer 1

Penetration testing → security assessment where testers actively attempt to exploit vulnerabilities to determine real-world impact, going beyond vulnerability scanning by proving whether weaknesses can actually be abused.

Question 2

Rules of Engagement

Answer 2

Rules of engagement → formal agreement that defines the scope, timing, methods, permissions, and limitations of a penetration test to ensure testing is legal, controlled, and aligned with business goals.

Question 3

Exploiting Vulnerabilities

Answer 3

Exploiting vulnerabilities → phase of penetration testing where multiple attack techniques such as password brute force, social engineering, database injection, or buffer overflows are attempted to gain unauthorized access.

Question 4

The Process

Answer 4

The process → penetration testing workflow that involves initial access, lateral movement between systems, establishing persistence through backdoors, and accessing normally restricted systems to fully evaluate security weaknesses.

Question 5

Responsible Disclosure Program

Answer 5

Responsible disclosure program → structured process that allows researchers to report vulnerabilities safely so organizations can fix issues before details are publicly released.

Question 6

False Positives

Answer 6

False positives → vulnerability scan results that incorrectly report a weakness that does not actually exist, often requiring manual validation to dismiss.

Question 7

False Negatives

Answer 7

False negatives → vulnerabilities that exist but are missed by scans or tests, creating a dangerous false sense of security.

Question 8

High-Severity Vulnerabilities

Answer 8

High-severity vulnerabilities → weaknesses that are easy to exploit and cause major impact such as system compromise, data breaches, or service disruption.

Question 9

Medium-Severity Vulnerabilities

Answer 9

Medium-severity vulnerabilities → weaknesses that require specific conditions or user interaction to exploit and cause moderate impact if abused.

Question 10

Low-Severity Vulnerabilities

Answer 10

Low-severity vulnerabilities → weaknesses with limited impact or difficult exploitation that still contribute to overall risk when combined with other issues.

Question 11

CVSS

Answer 11

Common vulnerability scoring system (CVSS) → standardized scoring model used to rate vulnerability severity based on exploitability, impact, and environmental factors.

Question 12

CVE

Answer 12

Common vulnerabilities and exposures (CVE) → publicly maintained catalog that assigns unique identifiers to known vulnerabilities for consistent tracking and reference.

Question 13

Exposure Factor

Answer 13

Exposure factor → measure of potential damage from a single security event, representing the percentage of asset value that could be lost during an incident.

Question 14

Risk Tolerance

Answer 14

Risk tolerance → level of risk an organization is willing to accept based on business priorities, cost, and operational impact, influencing how vulnerabilities are addressed.