Notifications
Clear all
Topic starter
25/06/2022 7:09 am
An enterprise has hired an outside security firm to conduct penetration testing on its network and applications. The firm has only been given the documentation available to the customers of the applications.
Which of the following BEST represents the type of testing that will occur?
- A . Bug bounty
- B . Black-box
- C . Gray-box
- D . White-box
- E . Red-team
Suggested Answer: D
Explanation:
White box penetration testing, sometimes referred to as crystal or oblique box pen testing, involves sharing full network and system information with the tester, including network maps and credentials. This helps to save time and reduce the overall cost of an engagement https://www.redscan.com/news/types-of-pen-testing-white-box-black-box-and-everything-in-between/#:~:text=White%20box%20penetration%20testing%2C%20sometimes,including%20network%20maps%20and%20credentials.
Explanation:
White box penetration testing, sometimes referred to as crystal or oblique box pen testing, involves sharing full network and system information with the tester, including network maps and credentials. This helps to save time and reduce the overall cost of an engagement https://www.redscan.com/news/types-of-pen-testing-white-box-black-box-and-everything-in-between/#:~:text=White%20box%20penetration%20testing%2C%20sometimes,including%20network%20maps%20and%20credentials.