A security weakness is known as a(n) ____.
a. threat
b. vulnerability
c. opportunity
d. risk
A ____ is a computer typically located in an area with limited security and loaded with software and data files that appear to be authentic, yet they are actually imitations of real data files.
a. write blocker
b. honeypot
c. port scanner
d. honeycomb
A(n) ____ is hardware or software that captures packets to decode and analyze its contents.
a. application analyzer
b. threat profiler
c. protocol analyzer
d. system analyzer
The end product of a penetration test is the penetration ____.
a. test profile
b. test view
c. test system
d. test report
When performing a vulnerability assessment, many organizations use ____ software to search a system for any port vulnerabilities.
a. application profiler
b. vulnerability profiler
c. threat scanner
d. port scanner
____ is the probability that a risk will occur in a particular year.
a. EF
b. SLE
c. ALE
d. ARO
____ is the proportion of an asset’s value that is likely to be destroyed by a particular risk.
a. ARO
c. ER
d. EF
If port 20 is available, then an attacker can assume that FTP is being used.
A ____ is a network set up with intentional vulnerabilities.
a. honeypot
b. honeynet
c. honeycomb
d. honey hole
A ____ in effect takes a snapshot of the current security of the organization.
a. risk assessment
b. threat analysis
c. threat assessment
d. vulnerability appraisal
