which he is going to perform his test?

adminDecember 23, 2017

Which of the following answers best describes the type of penetration testing where the analyst has full
knowledge of the network on which he is going to perform his test?

PrepAway - Latest Free Exam Questions & Answers

A.
White-Box Penetration Testing

B.
Black-Box Pen Testing

C.
Penetration Testing

D.
Gray-Box Pen Testing

Explanation:
In general there are three ways a pen tester can test a target system.
White-Box: The tester has full access and is testing from inside the system.
Gray-Box: The tester has some knowledge of the system he’s testing.
Black-Box: The tester has no knowledge of the system.
Each of these forms of testing has different benefits and can test different aspects of the system from different
approaches.
Incorrect Answers:
B: Black-Box Pen Testing: This is where no prior knowledge is given about the target network. Only a domain
name or business name may be given to the analyst. This is not what is described in the question.
C: The term “Penetration Testing” does not specify what type of penetration testing is being performed.
D: With Gray-Box testing, the tester has some knowledge of the system he’s testing. This is not what is
described in the question.

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

ISC Exam Questions

Free ISC2 Study Guide

which he is going to perform his test?

Leave a Reply Cancel reply