Answer / chaitanya

Error messages oftentimes giveaway what the server is running, and many times if the website administrator has not set up custom error pages for every site, it can give it away as simply as just entering a known bad address. Other times, just using telnet can be enough to see how it responds. Never underestimate the amount of information that can be gained by not getting the right answer but by asking the right questions.

Answer / gaurav

Penetration testing techniques can easily reveal from a website which of the ports, operating systems and web servers are running. For Instance, Nikto and Owasp-Zed are two methods of doing this.

A phonetic password generator picks two segments randomly for each six-letter password. The form of each segment is CVC (consonant, vowel, consonant), where V= < a, e, i, o, u > and C = (V.) ̅ What is the total password population? What is the probability of an adversary guessing a password correctly?

0 Answers  

---

What is the most commonly used computer application?

0 Answers  

---

What is XSS?

1 Answers  

---

What is the difference between a virus and a trojan?

0 Answers   Tavant Technologies, Zensar,

---

What do you think of social networking sites such as Facebook and LinkedIn?

1 Answers  

---

What are the most common computer applications?

0 Answers  

---

I run an SMB. I have 4 people in my entire company and a web-based store. I don’t have the time, patience or manpower to have a computer guy. Why should I care about exploits and computer jibberish?

0 Answers  

---

 You see a user logging in as root to perform basic functions. Is this a problem?

1 Answers  

---

How would you permanently remove the threat of data falling into the wrong hands?

1 Answers  

---

 What is the Chain of Custody?

1 Answers  

---

How would you login to Active Directory from a Linux or Mac box?

0 Answers  

---

What is SSL and why is it not enough when it comes to encryption?

1 Answers  

---