20 May Practice Test Question- Penetration Testing
Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies.
In what type of penetration test does the attacker have no access to information about the tested environment other than that gathered during the attacker’s own reconnaissance efforts?
A. Grey Box
B. Blue Box
C. White Box
D. Black Box
Correct Answer: D
Attackers do receive different levels of information in advance of a white box or grey box test, making them incorrect answers here. Blue box testing is not a type of penetration test, so that is another incorrect answer.Finally, black box penetration tests begin by providing the attacker with no information about the target environment, making it our correct answer.