Security Interview Questions
Questions Answers Views Company eMail

 Why would you want to use SSH from a Windows pc?

1 1370

What’s the difference between Symmetric and Asymmetric encryption?

1 863

What is SSL and why is it not enough when it comes to encryption?

1 2080

 How would you find out what a POST code means?

1 754

 What is the difference between a Black Hat and a White Hat?

1 732

You need to reset a password-protected BIOS configuration. What do you do?

1 574

What is XSS?

1 669

How would you login to Active Directory from a Linux or Mac box?


 What are salted hashes?

1 606

What do you think of social networking sites such as Facebook and LinkedIn?

1 675

What are the three ways to authenticate a person?

1 1822

How would you judge if a remote server is running IIS or Apache?

1 1574

What is data protection in transit vs data protection at rest?

1 1069

 You see a user logging in as root to perform basic functions. Is this a problem?

1 1323

How do you protect your home Wireless Access Point?

1 620

Un-Answered Questions { Security }

Explain what is Brute Force Hack?


 What is Exfiltration?


I run an SMB. I have 4 people in my entire company and a web-based store. I don’t have the time, patience or manpower to have a computer guy. Why should I care about exploits and computer jibberish?


what is the use of scul transaction in sap security in ecc server?


How would you login to Active Directory from a Linux or Mac box?


How would you permanently remove the threat of data falling into the wrong hands?


 Explain what is DOS (Denial of service) attack? What are the common forms of DOS attack?


What is residual risk?


I’m the CEO of a Fortune 500 company. I make more in an afternoon than you make in a year. I don’t care about this stupid security stuff, it just costs time and money and slows everything down. Why should I care about this junk?


1. Assume that passwords are selected from four-character combination of 26 alphabetic characters. Assume that an adversary is able to attempt passwords at a rate of one per second. a. Assuming no feedback to the adversary until each attempt has been completed, what is the expected time to recover the correct password? b. Assuming feedback to the adversary flagging an error as each incorrect character is entered, what is the expected time to discover the correct password?


what is the role in sap security?


A phonetic password generator picks two segments randomly for each six-letter password. The form of each segment is CVC (consonant, vowel, consonant), where V= < a, e, i, o, u > and C = (V.) ̅ What is the total password population? What is the probability of an adversary guessing a password correctly?


 What is footprinting in ethical hacking? What is the techniques used for footprinting?


What is dora process in DHCP and how it works?


explain step by step role design process in sap security