Question
'Penetration testing' is:
Solution
Penetration testing phases: 1) Reconnaissance (passive/active information gathering — OSINT, network scanning). 2) Scanning/Enumeration (identifying open ports, services, vulnerabilities — Nmap, Nessus). 3) Exploitation (gaining access — Metasploit, custom exploits). 4) Post-exploitation/Maintaining Access (privilege escalation, lateral movement, persistence). 5) Reporting (documenting findings, CVSS scores, remediation recommendations). RBI mandates annual VAPT by CERT-In empanelled agencies for all banks. Types: Black box, White box, Grey box.
More IT Networking Questions
- Which of the following is NOT a common type of firewall?
- Write through technique is used in which memory for data updating
- Which classic dynamic programming problem involves finding the shortest path in a weighted, directed graph?
- Which data analytics technique is best suited for identifying hidden patterns or relationships in large datasets?
- Which protocol is used for managing and monitoring network devices and their functions?
- Which key is kept secret and known only to the owner in a public key pair?
- Which property of a transaction is known as atomicity?
- Basic syntax to create a bar-chart in R is
- In a B+ tree, the leaf nodes are typically connected in a linked list to facilitate:
- You have a standard deck of 52 playing cards. What is the probability of drawing a red card (heart or diamond) from the deck?
Relevant for Exams:
