ITN 261 - ETHICAL HACKING OVERVIEW
QUESTIONS & ANSWERS 100%
CORRECT
Ethical hacker - ANSWERHired by companies to perform penetration tests
Penetration test - ANSWERAttempt to break into a company's network to find the weak
links
Vulnerability assessment - ANSWERTester attempts to enumerate all vulnerabilities
found in an application or system
Certified Ethical Hacker (CEH) - ANSWERDeveloped by the International Council of
Electronic Commerce Consultants (EC-Council). Most likely to be placed on a team that
conducts penetration tests.
Red team - ANSWERComposed of people with varied skills who perform tests and
attempt to penetrate a network
OSSTMM Professional Security Tester (OPST) - ANSWERA certification designated by
ISECOM for penetration testers and security professionals, demonstrating proficiency in
applying the OSSTMM methodology
Certified Information Systems Security Professional (CISSP) - ANSWERIssued by the
International Information Systems Security Certification Consortium (ISC^2) for testing
security-related managerial skills, usually with emphasis on policies and procedures
SysAdmin, Audit, Network, Security (SANS) Institute - ANSWEROffers training and IT
security certifications through Global Information Assurance Certification (GIAC) and list
of Top 25 Software Errors
Security test - ANSWERTester analyzes a company's security policy and procedures,
and reports any vulnerabilities to management
Hackers - ANSWERPeople who access computers or networks without proper
permission; considered illegal
Crackers - ANSWERPeople who break into systems to steal or destroy data
QUESTIONS & ANSWERS 100%
CORRECT
Ethical hacker - ANSWERHired by companies to perform penetration tests
Penetration test - ANSWERAttempt to break into a company's network to find the weak
links
Vulnerability assessment - ANSWERTester attempts to enumerate all vulnerabilities
found in an application or system
Certified Ethical Hacker (CEH) - ANSWERDeveloped by the International Council of
Electronic Commerce Consultants (EC-Council). Most likely to be placed on a team that
conducts penetration tests.
Red team - ANSWERComposed of people with varied skills who perform tests and
attempt to penetrate a network
OSSTMM Professional Security Tester (OPST) - ANSWERA certification designated by
ISECOM for penetration testers and security professionals, demonstrating proficiency in
applying the OSSTMM methodology
Certified Information Systems Security Professional (CISSP) - ANSWERIssued by the
International Information Systems Security Certification Consortium (ISC^2) for testing
security-related managerial skills, usually with emphasis on policies and procedures
SysAdmin, Audit, Network, Security (SANS) Institute - ANSWEROffers training and IT
security certifications through Global Information Assurance Certification (GIAC) and list
of Top 25 Software Errors
Security test - ANSWERTester analyzes a company's security policy and procedures,
and reports any vulnerabilities to management
Hackers - ANSWERPeople who access computers or networks without proper
permission; considered illegal
Crackers - ANSWERPeople who break into systems to steal or destroy data
