BCS Exam CISMP-V9 Topic 1 Question 64 Discussion

Actual exam question for BCS's CISMP-V9 exam

Question #: 64
Topic #: 1

[All CISMP-V9 Questions]

What does a penetration test do that a Vulnerability Scan does NOT?

AA penetration test seeks to actively exploit any known or discovered vulnerabilities.

BA penetration test looks for known vulnerabilities and reports them without further action.

CA penetration test is always an automated process - a vulnerability scan never is.

DA penetration test never uses common tools such as Nrnap, Nessus and Metasploit.

Show Suggested Answer

Suggested Answer: B

by Linn at Nov 22, 2023, 01:28 PM

Limited Time Offer

25%

Off

Contribute your Thoughts:

Submit Cancel

6 days ago

But isn't a vulnerability scan also important for identifying weaknesses?

upvoted 0 times

...

10 days ago

I agree with Helene, a penetration test goes beyond just reporting vulnerabilities.

upvoted 0 times

...

12 days ago

I think a penetration test actively exploits vulnerabilities.

upvoted 0 times

...