Organizations with information security departments are frequently attacked by o

Question

Organizations with information security departments are frequently attacked by outside entities and so typically conduct port scans and enumeration and password-cracking exercises of their own systems. These exercises, both official and unofficial, create the potential for exposure and exploitation

. With this in mind, consider the following questions and respond to at least three from the list:

Why is port scanning useful?

Why would attackers scan systems and networks?

Why would security analysts scan systems and networks?

Why is enumeration useful?

Why would security analysts use password cracking tools?

Explanation / Answer

Why is port scanning useful?
Open port gives information about the running application and services on the target machine. It also gives information about what kind packets the target machine will accept.

Why would attackers scan systems and networks?
Attackers scans systems for open ports and known vulnerabilities.

Why would security analysts scan systems and networks?
security analysts also scans systems for open ports and known vulnerabilities so that they get to know the loopholes of their systems.

Why is enumeration useful?
It is largely used to retrieve usernames and info on groups, services of computers in a network.

Why would security analysts use password cracking tools?
security analysts use password cracking tools to understand how much secure their password against a password cracking tool. Generally a good password contains both upper and lower case letter, numbers and special character in it takes significantly more time to crack than a weak password like a dictionary word.

Related Questions

Navigate

• Browse (All)
• Browse O
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.