1
Q
OSSTM provides a
A
detailed framework of testing strategies
2
Q
OWASP is soley to test the security of
A
web applications and services
3
Q
NIST Cybersecurity framework is used to
A
improve an organisations cybersecurity standards
4
Q
DOM XSS (document Object Model-based Cropss-site scripting)
A
uses HTML to execute javascript with the
HTML tag
5
Q
Persistent (Service-side) XSS is
A
javascript that is run when the server loads the page
6
Q
Reflected (Client-side) XSS is
A
run on the client side
7
Q
– in URL suggets what type of attack
A
SQL injection
8
Q
Maltego is for
A
reconnaissance
9
Q
SQLMap is for
A
expliotation
9
Q
Wireshark is for
A
scanning
10
Q
Netcat is for
A
Post-exploitation
CompTIA PentTest+
flashcards
Decks in class (21)
# Cards
-
Governance, Risk and Compliance23
-
Collaboration & Communication Activities7
-
Testing Frameworks & Methodologies26
-
Reporting and Remediation6
-
Reconnaissance & Enumeration13
-
Applying Enumeration Techniques12
-
Discovering & Analyzing Vulnerabilities13
-
Authentication Attacks14
-
Authentic attacks12
-
Wireless & Social Engineering Attacks18
-
Establishing Persistence29
-
Staging & Data Exfiltration13
-
LP - Exam Questions26
-
Nmap Commands21
-
CompTIA Mastery Course40
-
CompTIA Questions #237
-
THM - Course11
-
Post Exam Material84
-
Udemy Exams44
-
Udemy Videos83
-
Dion Training #242
