Objective 1.8 - Penetration Testing

0.0(0)
Studied by 0 people
call kaiCall Kai
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
GameKnowt Play
Card Sorting

1/18

encourage image

There's no tags or description

Looks like no tags are added yet.

Last updated 6:15 PM on 5/4/26
Name
Mastery
Learn
Test
Matching
Spaced
Call with Kai

No analytics yet

Send a link to your students to track their progress

19 Terms

1
New cards

Penetration Testing

Professional hacking to access data and computing power without being granted access; professional pen-testers are hired to identify and repair vulnerabilities and only work once, given written permission to obtain ungranted access.

2
New cards

Known environment

An environment where the outcomes or outcome probabilities are given

3
New cards

Unknown environment

The pentester knows nothing about the systems under attack

4
New cards

Partially known environment

A partially known environment penetration test is a focused approach that usually provides detailed information about specific systems or applications.

5
New cards

Rules of engagement

obtaining authorization before conducting any penetration or vulnerability test

6
New cards

Lateral movement

The process by which an attacker is able to move from one part of a computing environment to another.

7
New cards

Privilege Escalation

An attack that exploits a vulnerability in software to gain access to resources that the user normally would be restricted from accessing.

8
New cards

Persistence

an attacker's ability to maintain a presence in a network for weeks, months, or even years without being detected

9
New cards

Cleanup (Penetration testing)

Leave the network in its original state

10
New cards

Bug bounty

Reward scheme operated by software and web services vendors for reporting vulnerabilities.

11
New cards

Pivoting (Penetration Testing)

Gain access to systems that would normally not be accessible

12
New cards

War Flying (reconnaissance)

flying in private planes or with drones while collecting information on wireless networks

13
New cards

War Driving

Deliberately searching for Wi-Fi signals while driving by in a vehicle

14
New cards

Footprinting

the process of systematically identifying the network and its security posture (usually a passive process)

15
New cards

OSINT

Open Source INTelligence; gathered from publicly available sources

16
New cards

Red Team

The "hostile" or attacking team in a penetration test or incident response exercise.

17
New cards

Blue Team

The defensive team in a penetration test or incident response exercise.

18
New cards

White Team

Staff administering, evaluating, and supervising a penetration test or incident response exercise.

19
New cards

Purple Team

Made up of both the blue and red teams to work together to maximize their cyber capabilities through continuous feedback and knowledge transfer between attackers and defenders.