First step in a pen test
What is to document information about a target system or device.
Places malware where it is safe to probe it and play with it
Sandboxing
A team that acts as the attacking force.
What is Red team?
Categories or risks (DAILY DOUBLE)
What are High, medium, and low?
Most popular social media site/app
What is Facebook?
Type of tests when a testing team is provided with limited knowledge of the network systems and device
What is a Blind test?
A system that has been isolated from other systems and is used for analyzing suspect files and messages for malware.
What is Sheep dip computer?
Acts as the network defense team
What is the blue team?
Policies, procedures, and work practices that help or prevent a threat or make a threat more likely.
What are operational controls?
Kanye West real name
Who is Kanye West?
Rules that define how penetration testing should occur (DAILY DOUBLE)
What are rules of engagement?
A technique that can be used to run a possibly malicious program in a safe environment so that it does not infect the local system(DAILY DOUBLE)
What is sand boxing?
Group of technicians who referee the encounter between the Red Team and the blue team.
What is the White team?
Controls implemented with technology and include items such as firewalls,access lists, permissions on files or folders, and devices that identify and prevent threats.
What are technical controls?
He is an average kid that no one understands.(pink hat)
Who is Timmy Turner?
A testing team that is provided no knowledge regarding an organizations network, also known as a closed, or black box, testing.
What is a Zero-Knowledge test
Program that can help you exercise care in ensuring the authenticity and integrity of the compenents of hardware purchased from a vendor.
What is Trust foundry?
Team that accesses log data using an SIEM.
What is a Blue Team?
In addition to the impact of the event when performing qualitative risk evaluation.
What is Likelihood?
The creator of Amazon.
Who is Jeff Bezos?
Testing team provided with public knowledge regarding the organization's network.
What is a Partial-Knowledge test?
Taking a large document or file and with use of a hashing algorithm, reducing the file to a character string that can be used to verify the integrity of the file.
What is Hashing?
A team that gathers intelligence information and performs traffic and data analysis?
What is Blue team?
Helps prioritize the application of resources to the most critical vulnerabilities
What is Risk assessment matrix?
Someone in this LC who is afraid of frogs
Who is Cameron?