What port is used for InsightVM Security Console to connect to a Scan Engine
(standard pairing)? - ANSWER TCP-40814
What port is used for a Scan Engine to connect to InsightVM Security Console
(reverse pairing)? - ANSWER TCP-40815
What are the steps in the vulnerability management lifecycle? (6) - ANSWER
1. Discover
2. Prioritize Assets
3. Assess
4. Report
5. Remediate
6. Verify
what are the URLs that the Security Console needs to access? - ANSWER
Https://support.rapid7.com
https://updates.rapid7.com
What technology is the InsightVM database? - ANSWER Embedded
PostgreSQL
No direct access to DB, but ability to modify configuration files and ability to
replicate to data warehouse/another postgresql server
What is the default agent data collection schedule? - ANSWER 6 hours
Which component of InsightVM monitors the Agents? - ANSWER Insight
Platform
What is the Scan Assistant? (2) - ANSWER Lightweight service installed on
asset
, Gathers asset data; sends to Scan Engine
What are the benefits of the scan assistant? (3) - ANSWER 1. Sensitive
credentials not configured, stored, or managed in Security Console
2. Secure, encrypted connection to Scan Engine
3. Platform (cloud) connection not required
Which Operating Systems are supported by the Scan Assistant? - ANSWER 1.
Windows
2. Linux
What is the default port for the security console? - ANSWER TCP-3780
What are the default ports for a Collector? - ANSWER TCP-5508
TCP-6608
TCP-8037
What are the stages in the scan process (6) - ANSWER 1. Discovery
2. Port Scan
3. Service Fingerprinting
4. OS Fingerprinting
5. Vulnerability Checks
6. Policy Checks
What methods are used as part of the discovery stage of a scan? (4) - ANSWER
1. ICMP Ping
2. ARP Ping
3. TCP Packets
4. UDP Packets
What methods are used in the Service Fingerprinting stage? (2) - ANSWER 1.
Banner-grabbing
2. IP Stack Analysis
(standard pairing)? - ANSWER TCP-40814
What port is used for a Scan Engine to connect to InsightVM Security Console
(reverse pairing)? - ANSWER TCP-40815
What are the steps in the vulnerability management lifecycle? (6) - ANSWER
1. Discover
2. Prioritize Assets
3. Assess
4. Report
5. Remediate
6. Verify
what are the URLs that the Security Console needs to access? - ANSWER
Https://support.rapid7.com
https://updates.rapid7.com
What technology is the InsightVM database? - ANSWER Embedded
PostgreSQL
No direct access to DB, but ability to modify configuration files and ability to
replicate to data warehouse/another postgresql server
What is the default agent data collection schedule? - ANSWER 6 hours
Which component of InsightVM monitors the Agents? - ANSWER Insight
Platform
What is the Scan Assistant? (2) - ANSWER Lightweight service installed on
asset
, Gathers asset data; sends to Scan Engine
What are the benefits of the scan assistant? (3) - ANSWER 1. Sensitive
credentials not configured, stored, or managed in Security Console
2. Secure, encrypted connection to Scan Engine
3. Platform (cloud) connection not required
Which Operating Systems are supported by the Scan Assistant? - ANSWER 1.
Windows
2. Linux
What is the default port for the security console? - ANSWER TCP-3780
What are the default ports for a Collector? - ANSWER TCP-5508
TCP-6608
TCP-8037
What are the stages in the scan process (6) - ANSWER 1. Discovery
2. Port Scan
3. Service Fingerprinting
4. OS Fingerprinting
5. Vulnerability Checks
6. Policy Checks
What methods are used as part of the discovery stage of a scan? (4) - ANSWER
1. ICMP Ping
2. ARP Ping
3. TCP Packets
4. UDP Packets
What methods are used in the Service Fingerprinting stage? (2) - ANSWER 1.
Banner-grabbing
2. IP Stack Analysis
