Exam Essentials
Be able to describe penetration testing. Penetration testing involves trying to get access to your system from an attacker’s perspective.
Be able to differentiate between black, white, and gray box testing. Black box testing assumes no prior knowledge about the network, while white box testing assumes that it is an insider (with knowledge) who may be trying to do harm. Gray box testing falls between the two extremes and works under the assumption that an outsider is able to access information from an insider. All three are methods of approaching ethical hacking.
Know the purpose of code review. The purpose of code review is to look at all custom written code for holes that may exist. The review needs to also examine changes ...
Get CompTIA® Security+™: Study Guide, Fifth Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
