CISSP Practice question #103

We have hired a penetration testing company to find security flaws, they are at the enumeration phase. What are they doing?
A: Reconnaissance.
B: Scanning.
C: Vulnerability assessment.
D: Exploitation.

CBK 6: Security Assessment and Testing
Source: practice tests


“B: Pen testing would normally have these phases, enumeration is the same as scanning. Planning > Reconnaissance > Scanning (enumeration) > Vulnerability assessment > Exploitation > Reporting.

show less

IT security trainer.
Sharing my knowledge, to help you reach your IT certification goals.
CISSP, C|EH, PMP, CCNP, CompTIA Security+, SCP, CCNA-Security, CCNA, et. Al.

You may also like