eJPT - eLearnSecurity Junior Penetration Tester Vulnerability Assessment Questions and Answers

Question 1

A penetration tester is conducting a vulnerability assessment and wants to simulate the perspective of an external attacker with no prior knowledge of the internal network. Which type of scan would be MOST appropriate for this objective?

Accepted Answer

Unauthenticated scan

Answer

An unauthenticated scan is performed without any special credentials or privileges. It mimics how an external attacker would see the system, identifying vulnerabilities that are exposed to the public internet without any login access.

Question 2

During a vulnerability assessment, a junior penetration tester uses a tool that actively sends specially crafted packets to target systems to elicit responses and identify potential weaknesses. This method, however, risks disrupting network operations. Which vulnerability scanning technique is being used?

Accepted Answer

Active scanning

Answer

Active scanning involves directly interacting with target systems by sending probes, packets, and queries to gather information and identify vulnerabilities. This direct interaction makes it more thorough but also carries a risk of impacting the performance or stability of the targeted network or services.

Question 3

Which of the following is the PRIMARY purpose of the Common Vulnerability Scoring System (CVSS)?

Accepted Answer

To offer a standardized framework for rating the severity of vulnerabilities.

Answer

The primary purpose of CVSS is to provide a standardized, open framework for communicating the characteristics and severity of software vulnerabilities. It assigns a numerical score from 0-10 to help organizations prioritize their response and remediation efforts.

Question 4

A penetration tester needs to perform a vulnerability scan that provides the most comprehensive and accurate view of a system's security posture by looking at its configuration, patch levels, and installed software from an 'insider' perspective. Which scanning method should be chosen?

Accepted Answer

Authenticated scan

Answer

An authenticated (or credentialed) scan uses valid user credentials to log into the target system. This allows the scanner to access the file system, configuration settings, and installed software list, providing a much more detailed and accurate report on vulnerabilities like missing patches and misconfigurations that are not visible externally.

Question 5

While Nmap is primarily known as a network port scanner, its capabilities can be extended to perform vulnerability assessments using which of its features?

Accepted Answer

The Nmap Scripting Engine (NSE)

Answer

The Nmap Scripting Engine (NSE) allows users to write and use scripts to automate a wide variety of networking tasks. A specific category of these scripts, often invoked with '--script vuln', is designed to check for known vulnerabilities on the target services.

eJPT - eLearnSecurity Junior Penetration Tester Practice Test

eJPT - eLearnSecurity Junior Penetration Tester Practice Test

eJPT - eLearnSecurity Junior Penetration Tester Vulnerability Assessment Questions and Answers