Analyzing Internal Vulnerability Scans

Begin Learning Cyber Security for FREE Now!

Already a Member Login Here

Q: Ian must analyze the results of an internal vulnerability scan to be run on website hosting servers. The code is written in Java and his team lead wants to it for buffer overflow vulnerabilities using the SAINT scanning tool. Why should Ian discourage his team lead from this avenue?

a. SAINT, as an automated vulnerability assessment tool, is too resource-heavy.

b. Java is not vulnerable to buffer overflow attacks.

c. All vulnerability signatures will need to be manually updated before SAINT runs a scan.

d. The SAINT scanner fails to incorporate the new OWASP Top 10 web application scanning policies and procedures.

View Topics

Our Revolution

We believe Cyber Security training should accessible for everyone, everywhere. Everyone deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is the world's largest community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

We recommend always using caution when following any link

Are you sure you want to continue?