CERTIVIEW

Wednesday, 2 March 2016

CEH v9 Question of the Week: Web Application Penetration Testing

CEH-v9-QOWBlackYour boss asked you to perform a Web Application Penetration Testing. Before start, you decide to look for a security testing methodology to help you perform all tests.

What security testing methodology will help you?

A. Mapping the application v.1.2
B. OWASP testing guide v4
C. OSSTMM v3.0
D. NIST SP 800-115

Reveal Answer

The correct answer is B.

The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software.

OSSTMM v3.0 is a methodology to test the operational security of physical locations, human interactions, and all forms of communications such as wireless, wired, analog, and digital.

NIST SP 800-115 is a guide to the basic technical aspects of conducting information security assessments. It presents technical testing and examination methods and techniques that an organization might use as part of an assessment, and offers insights to assessors on their execution and the potential impact they may have on systems and networks.

 

Related Course
Certified Ethical Hacker v9

CEH v9 Question of the Week Series

  • CEH v9 Question of the Week: Retina Scanners
  • CEH v9 Question of the Week: Employee Behavior
  • CEH v9 Question of the Week: CVE-2007-2447
  • CEH v9 Question of the Week: SQL Injection
  • CEH v9 Question of the Week: Web Application Penetration Testing


from
CERTIVIEW
Unknown at 03:20
Share

No comments:

Post a Comment

‹
›
Home
View web version

About Me

Unknown
View my complete profile
Powered by Blogger.