Ethical Hacking Overview: Key Concepts and Certifications, Exams of Advanced Education

An overview of ethical hacking, including definitions of key terms such as ethical hacker, penetration test, vulnerability assessment, and security test. It differentiates between hackers and crackers, and introduces concepts like script kiddies and hacktivists. The document also covers various penetration testing models (white box, black box, gray box) and ethical hacking certifications like oscp, ceh, and cissp. It serves as a foundational resource for understanding the basics of ethical hacking and network security. Useful for students and professionals interested in cybersecurity and ethical hacking, providing a solid foundation in key concepts and methodologies. It also introduces various certifications relevant to the field, offering a pathway for further professional development. The content is structured as a series of questions and answers, making it easy to digest and review.

Typology: Exams

2024/2025

Available from 07/12/2025

Ellah1
Ellah1 🇺🇸

4.3

(11)

11K documents

1 / 4

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Chapter 1 Ethical Hacking Overview
RATED A
What is an ethical hacker? - correct answer Users who attempt to break into a
computer system or network with the owner's permission.
What is a penetration test? - correct answer A test done by security
professionals to break into a network (with permission from the owner) in an
effort to discover vulnerabilities; penetration testers are also called "ethical
hackers."
What is a vulnerability assessment? - correct answer A test performed by
security professionals to enumerate as many vulnerabilities as possible.
What is a security test? - correct answer A test done by security professionals
that goes beyond attempting to break into a network it's carried out to analyze
security policies and procedures and report vulnerabilities to management.
What is a hacker? - correct answer A user who attempts to break into a
computer system or network without authorization from the owner.
What is a cracker? - correct answer Hackers who break into systems with the
intent of doing harm or destroying data.
What are script kiddies? - correct answer Similar to packet monkeys, a term for
unskilled hackers or crackers who use scripts or programs written by others to
penetrate networks.
pf3
pf4

Partial preview of the text

Download Ethical Hacking Overview: Key Concepts and Certifications and more Exams Advanced Education in PDF only on Docsity!

RATED A

What is an ethical hacker? - correct answer ✅Users who attempt to break into a computer system or network with the owner's permission. What is a penetration test? - correct answer ✅A test done by security professionals to break into a network (with permission from the owner) in an effort to discover vulnerabilities; penetration testers are also called "ethical hackers." What is a vulnerability assessment? - correct answer ✅A test performed by security professionals to enumerate as many vulnerabilities as possible. What is a security test? - correct answer ✅A test done by security professionals that goes beyond attempting to break into a network it's carried out to analyze security policies and procedures and report vulnerabilities to management. What is a hacker? - correct answer ✅A user who attempts to break into a computer system or network without authorization from the owner. What is a cracker? - correct answer ✅Hackers who break into systems with the intent of doing harm or destroying data. What are script kiddies? - correct answer ✅Similar to packet monkeys, a term for unskilled hackers or crackers who use scripts or programs written by others to penetrate networks.

RATED A

What are pocket monkeys? - correct answer ✅A derogatory term for unskilled crackers or hackers who steal program code and use it to hack into network systems instead of creating the programs themselves. What is a script? - correct answer ✅A set of instructions that runs in sequence to perform tasks on a computer system. What is a hacktivist? - correct answer ✅A hacker who breaks into a computer system or network for political or ideological reasons. Which methods do ethical use to perform penetration tests? a. White box model b. Black box model c. Gray box model d. All the above - correct answer ✅d. All the above What is white box modeling? - correct answer ✅A model for penetration testing in which testers can speak with company staff and are given a full description of the network topology and technology. What is black box modeling? - correct answer ✅A model for penetration testing in which management doesn't divulge to IT security personnel that testing will be conducted or give the testing team a description of the network topology. In other words, testers are on their own.

RATED A

Which certifications is a non-vendor-specific certification issued by the International Information Systems Security Certification Consortium, Inc. (ISC2) - correct answer ✅Certified Information Systems Security Professional (CISSP) Founded in 1989, this organization conducts training worldwide and offers multiple certifications through GIAC in many aspects of computer security and forensics. - correct answer ✅SysAdmin, Audit, Network, Security (SANS) Institute An organization founded by the SANS Institute in 1999 to validate the skills of security professionals. GIAC certifications encompass many areas of expertise in the security field. - correct answer ✅Global Information Assurance Certification (GIAC) A program that sends automatic responses to users, giving the appearance of a person being on the other side of the connection. - correct answer ✅Internet Relay Chat (IRC)