Which term describes the practice of using computer attack techniques with permission to find security flaws and improve security?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

Which term describes the practice of using computer attack techniques with permission to find security flaws and improve security?

Explanation:
The main idea is authorized attacker-style testing used to uncover vulnerabilities and strengthen defenses. The best term for this practice is Ethical Hacker because it explicitly describes someone who applies attacker techniques with explicit permission and a goal of improving security. The permission and ethical framework distinguish this work from unauthorized hacking. A penetration tester is closely related and focuses on performing tests, but the term Ethical Hacker highlights the ethical boundary and consent more clearly. A security auditor emphasizes reviews of policies and controls and may not involve active exploitation.

The main idea is authorized attacker-style testing used to uncover vulnerabilities and strengthen defenses. The best term for this practice is Ethical Hacker because it explicitly describes someone who applies attacker techniques with explicit permission and a goal of improving security. The permission and ethical framework distinguish this work from unauthorized hacking. A penetration tester is closely related and focuses on performing tests, but the term Ethical Hacker highlights the ethical boundary and consent more clearly. A security auditor emphasizes reviews of policies and controls and may not involve active exploitation.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy