Network Penetration Testing

Questions and Answers

Which type of tests are commonly included in a network penetration test against target network infrastructure?

• Detecting unnecessary open ports
• Testing firewall bypass
• Testing switching or routing issues
• All of the above (correct)

What does a network penetration test help the administrator to do?

• Discover live systems
• Troubleshoot services
• Calibrate firewall/IDS rules
• All of the above (correct)

What is the first step in a network penetration test?

• Discovering live systems (correct)
• Open ports troubleshooting
• Gaining access to the target network environment
• Grabbing system banners

What should a pen tester try to gain access to in the target network environment?

All of the above (D)

What is the purpose of performing both internal and external network penetration testing?

To achieve better results (D)

Flashcards are hidden until you start studying

Study Notes

Network Penetration Test

• Commonly included tests: Network discovery, Vulnerability scanning, Password cracking, Social engineering, Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks
• Helps the administrator to: Identify vulnerabilities, Evaluate the security posture, Understand the impact of a real-world attack, Prioritize remediation efforts

Steps in a Network Penetration Test

• First step: Information gathering and reconnaissance to gather data about the target network

Goal of a Pen Tester

• Try to gain access to: Sensitive data, Administrator-level access, Critical system components

Purpose of Internal and External Testing

• Identify vulnerabilities from both internal and external perspectives
• Understand the attack surface from both insider and outsider threats
• Get a comprehensive view of the network's security posture