HP0-M25試験無料問題集（120題）「HP Assessing Web Application Security 認定」

出題：1

When using the Search view in WebInspect, which is the most comprehensive way to search an HTTP response?

A. Response Raw

B. Response Cookies

C. Response Headers

D. Request Raw

正解：A 解答を投票する

出題：2

What is the difference between the proxy setting found under the Application Settings and the proxy setting found under the Scan Settings?

A. One controls the proxy port opened by WebInspect during Manual Step-Mode Crawl and the other controls the network path towards its scan targets.

B. One controls the network path towards its scan targets and the other controls the network path to the scan data repository.

C. One controls the network path WebInspect uses to reach the Internet for updates and licensing, and the other controls the network path taken towards its scan targets.

D. One controls the network path to access AMP and the other controls access to the Internet.

正解：C 解答を投票する

出題：3

What are the Network Authentication techniques supported by WebInspect? (Select three.)

A. Retinal Scan

B. htaccess

C. NTLM

D. Kerberos

E. Cybersafe

F. HTTP Basic

正解：C,D,F 解答を投票する

出題：4

After determining that a vulnerability finding is a False Positive, how do you mark the
vulnerability as a False Positive?

A. Right click vulnerability -> select Annotate -> Mark as False Positive

B. Right click vulnerability -> select Ignore Vulnerability -> Mark as False Positive

C. Right click vulnerability -> select Change Vulnerability Severity -> Mark as False Positive

D. Right click vulnerability -> select Edit Vulnerability -> Mark as False Positive

正解：A 解答を投票する

出題：5

Which statement best describes Smart Credentials in the Web Form Editor?

A. The values entered into a parameter designated as a Smart Credential will be encrypted during the scan.

B. The values entered into a parameter designated as a Smart Credential allow WebInspect to use digital certificates to authenticate to the server.

C. Designating a parameter as a Smart Credential causes a user to be prompted for an input during the execution of the scan.

D. Smart Credentials will apply Authentication values used during the scan.

正解：D 解答を投票する

出題：6

Which of the following are HTTP methods? Select two.

A. HEAD

B. POST

C. UPLOAD

D. LIST

E. ACCEPT

正解：A,B 解答を投票する

出題：7

What steps must be taken to include the Traffic Monitor file in an exported scan file?

A. enable Traffic Monitor in settings, complete scan, and export the scan with logs

B. enable Traffic Monitor in settings, complete scan, and export scan file

C. run scan with default settings then export the scan with logs

D. export scan file and import to another copy of WebInspect

正解：A 解答を投票する

出題：8

What scan policy group contains policies with potentially dangerous checks, such as denial-of-service attacks, that could cause production servers to fail?

A. Best Practice

B. Compliance

C. Hazardous

D. Assault

正解：C 解答を投票する

出題：9

How do you initiate the WebInspect Command Line?

A. via the WebInspect toolkit

B. via the Advanced Assessment panel

C. via the scheduler.exe program

D. via the wi.exe program

正解：D 解答を投票する

出題：10

What is one way to determine the GUID, or scan name, associated with a particular scan?

A. Find the folder where scan data is stored and find the correct scan file.

B. Open the Scan and look at Scan ID in Scan Log .

C. Open the Scan and look at the Scan Properties.

D. Run the Scan Statistics report on the scan.

正解：B 解答を投票する

HP0-M25試験無料問題集「HP Assessing Web Application Security 認定」