Kali os Study guides, Class notes & Summaries

A new Linux user selected the Live option upon installation. He then created a holiday schedule and saved it in the home directory before turning off the computer. The next day he turned the computer on and could not find the file. What may be the reason? - The user chose Live mode, which doesn't retain its state What does the shebang do? - Direct a script to a terminal Bash works in both windows and linux natively? - False An employee in your company submitted a support ticket regardin...

A1) Benefits of pentesting -ANSWER Manage risk. Increase business continuity. Minimise client-side attacks. Protect clients, partners and third-parties. Comply with regulation. A1) Pentest structure -ANSWER Reconnaissance (i.e. find live hosts, sweeping, find services, scanning, banner matching, find vulnerabilities). Target prioritisation (e.g. assess servers rather than printers). Testing of services and exploitation if applicable. Consult/Confirm with customer if ok to exploit. Inform cust...

CPSA FINAL EXAM WITH REVISED QUESTIONS AND 100% CORRECT ANSWERS RATED A+. A1) Benefits of pen testing - Manage risk. Increase business continuity. Minimize clientside attacks. Protect clients, partners and third-parties. Comply with regulation. A1) Pentest structure - Reconnaissance (i.e., find live hosts, sweeping, find services, scanning, banner matching, find vulnerabilities). Target prioritization (e.g., assess servers rather than printers). Testing of services and exploitation if applic...

Open-Source Operating System A type of operating system in which the source code can be downloaded, modified or redistributed for free. Proprietary (Closed-Source) Operating System A type of operating system in which the creator retains all rights to use, modify and redistribute. In general, how many years of post-release support does workstation Windows OS get? 5 years In general, how many years of post-release support does server Windows OS get? 10 years What are two ty...

CPSA FINAL EXAM WITH REVISED QUESTIONS AND 100% CORRECT ANSWERS RATED A+. A1) Benefits of pen testing - Manage risk. Increase business continuity. Minimize clientside attacks. Protect clients, partners and third-parties. Comply with regulation. A1) Pentest structure - Reconnaissance (i.e., find live hosts, sweeping, find services, scanning, banner matching, find vulnerabilities). Target prioritization (e.g., assess servers rather than printers). Testing of services and exploitation if appli...

CPSA FINAL EXAM WITH REVISED QUESTIONS AND 100% CORRECT ANSWERS RATED A+. A1) Benefits of pen testing - Manage risk. Increase business continuity. Minimize clientside attacks. Protect clients, partners and third-parties. Comply with regulation. A1) Pentest structure - Reconnaissance (i.e., find live hosts, sweeping, find services, scanning, banner matching, find vulnerabilities). Target prioritization (e.g., assess servers rather than printers). Testing of services and exploitation if applic...

Methodology - Answer __ is a system of methods used in a particular area of study or activity. Pentest Methodology - Answer __: 1. Planning & Scoping 2. Info Gathering & Vulnerability ID 3. Attacks & Exploits 4. Reporting & Communication NIST SP 800-115 Methodology - Answer __: 1. Planning 2. Discovery 3. Attack 4. Reporting Planning a Penetration Test - Answer __, Questions to ask: ▪ Why Is Planning Important? ▪ Who is the Target Audience? ▪ Budgeting ▪ Resources an...

Medical Terminology Final all questions from self test 1. The word part that contains the fundamental meaning of a word is the: - ANS root word "stem word" 2. In the medical term 'intra/ven/ous', -ven- is the: - ANS word root or stem word 3. The word part attached to the beginning of a word root in order to modify its meaning is called a(n): - ANS prefix 4. In the medical term 'arthr/itis', -itis is the: - ANS suffix 5. The word part attached to the end of a word r...

SQL injection (insertion) attack SQLi attacks are designed to send malicious SQL commands to the DB (server), for extraction of data Cross-site scripting (XSS) attack Exploits Web page security vulnerabilities to bypass browser security mechanisms and create malicious link that injects unwanted code into a website. Inference (w.r.t DB security) process of performing authorized queries AND deducing unauthorized information from legitimate responses received The inference...