What is Post-Exploitation?

Phase 6: Assessing what happens after access is gained, including privilege escalation.

What is Reporting in PTES?

Phase 7: Documenting findings, vulnerabilities, and providing recommendations.

What is Black Box Testing?

Testing with no prior knowledge of the system, simulating an external hacker.

Testing with full internal documentation

Testing using test accounts provided by IT

What is White Box Testing?

Testing with full internal knowledge of the system and its configurations.

Testing without any information

What is Grey Box Testing?

Testing with partial internal knowledge, simulating an insider threat.

What is Open-Source Intelligence (OSINT)?

Information gathered from publicly available sources such as social media or websites.

Encrypted data retrieved from backups

What is Search Engine Dorking?

Using advanced search queries to locate exposed sensitive information online.

A technique to encrypt web traffic

What is Network Scanning?

Identifying devices and open ports within a network.

What is Network Mapping?

Visualizing and cataloguing how devices and servers are interconnected.

A method for cracking passwords

What is Port Scanning?

Checking which network ports are open and potentially exploitable.

Measuring physical port sizes on hardware

What is an IP Address?

A unique numerical identifier assigned to devices on a network.

What is OS Detection?

Identifying which operating system a device is using.

What is Network Topology?

The structure and layout of network components and connections.

What is SQL Injection?

A code-injection technique that exploits database vulnerabilities.

What is Cross-Site Scripting (XSS)?

Inserting malicious scripts into web applications viewed by users.

A method of encrypting web traffic

What is a Buffer Overflow Attack?

Overloading a system's memory to execute malicious code.

A way to improve system performance

What is a Password Cracking Tool?

Software used to recover or guess passwords.

A tool to encrypt passwords safely

A method to securely store passwords

What is Privilege Escalation?

Gaining higher access rights than initially granted.

Creating a new user with limited privileges

Encrypting files to increase security

What is Persistence in cyber attacks?

Maintaining long-term unauthorized access to a compromised system.

Temporarily accessing a service for a few minutes

What is System Forensics?

Investigation and analysis of system data to identify how breaches occurred.

Immediately deleting compromised systems

Deploying patches automatically

Malicious software designed to disrupt or gain unauthorized access.

What is Social Engineering?

Manipulating individuals into divulging confidential information.

What is Pretexting in social engineering?

A form of social engineering where an attacker creates a fabricated scenario to obtain data.

What is Vishing (Voice Phishing)?

Using phone calls to trick individuals into revealing sensitive information.

A method of encrypting voice calls

What is a Security Posture Assessment?

Evaluating an organization's overall security strength.

What is a Response Plan?

Steps to detect, respond to, and recover from cyber incidents.

A method to map network topology

What is Exploit Development?

Crafting custom tools or scripts to target specific vulnerabilities.

A process to update antivirus definitions

What are Ethical Considerations in pentesting?

Principles guiding responsible hacking (e.g., authorization, confidentiality, non-disruption).

Instructions for bypassing laws

What is Incident Response?

The organized approach to handling security breaches or attacks.

A method to permanently delete servers

A process of scanning ports only

What is Data Integrity?

Ensuring data remains accurate and unaltered during storage or transfer.

Encrypting data to hide it from admins

What is Confidentiality in cybersecurity?

Restricting access to sensitive information.

Backing up data to public servers

What is Availability in the CIA triad?

Ensuring systems and data are accessible when needed.

Encrypting data so no one can access it

Restricting network traffic permanently

What is Integrity in the CIA triad?

Guaranteeing data accuracy and reliability.

Making data immutable and unreadable

What is the CIA Triad?

The foundational model of cybersecurity: Confidentiality, Integrity, Availability.

What is an Attack Vector?

The path or means by which a hacker gains access to a system.

Security system that monitors and controls network traffic.

A physical wall in a data center

Fraudulent attempt to obtain sensitive information via deceptive messages.

A method for physical penetration testing

What is an Insider Threat?

Security risk originating from within the organization.

A threat from external hackers only

Case study: An ethical approach to hacking

Authored by Darwin Payla

Information Technology (IT)

12th Grade

Used 2+ times

Case study: An ethical approach to hacking

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

45 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is Penetration Testing?

Authorized simulated attack on a system to evaluate its security.

Unauthorized system hack to steal data

Software update process

Firewall configuration

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the Penetration Testing Execution Standard (PTES)?

A structured 7-phase framework for conducting penetration tests.

A firewall configuration guide

An encryption algorithm

A malware removal process

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What are Pre-engagement Interactions in PTES?

Phase 1: Defining goals, scope, and rules of engagement with the client.

Phase 2: Scanning for open ports

Phase 7: Writing the final report

Phase 5: Exploiting vulnerabilities

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is Intelligence Gathering in pentesting?

Phase 2: Collecting publicly available data about the target (e.g. OSINT).

Phase 4: Patching systems

Phase 6: Escalating privileges

Phase 1: Signing contracts

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is Threat Modelling?

Phase 3: Identifying potential threats, attackers, and methods of exploitation.

Mapping network topology visually

Cracking passwords

Performing DNS lookups

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is Vulnerability Analysis?

Phase 4: Detecting weaknesses that could be exploited.

Deploying patches across systems

Reviewing legal contracts

Encrypting sensitive data

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is Exploitation in pentesting?

Phase 5: Actively attempting to breach systems using known vulnerabilities.

Writing the final report

Only passive data collection

Designing user training

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

50 questions

Ujian Informatika Kelas 10

Quiz

•

10th Grade - University

41 questions

Quiz Literasi Digital

Quiz

•

12th Grade

50 questions

Materi Internet Kelas 4 SD Kesatuan

Quiz

•

4th Grade - University

50 questions

XI LAT. SOAL 2 PSAS INF XI F

Quiz

•

9th - 12th Grade

50 questions

informatika/SIMDIG XI (ASAS 2425)

Quiz

•

11th Grade - University

43 questions

STS GANJIL INFORMATIKA KELAS 8 TP 2025/2026

Quiz

•

8th Grade - University

50 questions

Asesmen Diagnostik Kelas 12 RPL 4

Quiz

•

12th Grade

40 questions

INFORMATIKA 11 PG

Quiz

•

11th Grade - University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

29 questions

Alg. 1 Section 5.1 Coordinate Plane

Quiz

•

9th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

11 questions

FOREST Effective communication

Lesson

•

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

Discover more resources for Information Technology (IT)

20 questions

-AR -ER -IR present tense

Quiz

•

10th - 12th Grade

22 questions

El Imperfecto

Quiz

•

9th - 12th Grade

20 questions

SSS/SAS

Quiz

•

9th - 12th Grade

20 questions

verbos reflexivos en español

Quiz

•

9th - 12th Grade

14 questions

Making Inferences From Samples

Quiz

•

7th - 12th Grade

23 questions

CCG - CH8 Polygon angles and area Review

Quiz

•

9th - 12th Grade

8 questions

Momentum and Collisions

Lesson

•

9th - 12th Grade

28 questions

Ser vs estar

Quiz

•

9th - 12th Grade