Practice English vocabulary for network penetration testing: recon, port scanning, lateral movement, data exfiltration findings, and network segmentation.
0 / 5 completed
1 / 5
During the initial phase, the pentester mapped the target's exposed services and found 3 open ports. Which phrase is correct?
The 'recon phase' (reconnaissance) is the information-gathering stage of a penetration test. Discovering open ports during recon is the expected outcome before moving to exploitation.
2 / 5
The pentester ran a network scan and found a management interface accessible from the internet with no authentication. Which phrase is correct?
'The network scan revealed an exposed admin panel' means the scanning tool discovered an administrative interface that is accessible externally — a critical finding in a pentest report.
3 / 5
After gaining access to one internal system, the attacker used it as a foothold to reach other internal systems. What is this technique called?
'Lateral movement' is the technique of moving from one compromised system to other systems within the same network. It is a key phase in the attack kill chain after initial access.
4 / 5
After thorough investigation, the pentesters confirmed that no sensitive data was copied or transferred out of the network. Which phrase is correct?
'Data exfiltration' means unauthorized transfer of data out of the target environment. 'We found no evidence of data exfiltration' is the standard phrase in pentest reports to indicate this attack vector was not observed.
5 / 5
The network is divided into isolated segments so that an attacker who compromises one segment cannot easily reach others. Which phrase describes this security control?
'Network segmentation limits blast radius' means that dividing the network into isolated zones restricts how far an attacker can spread after initial compromise. 'Blast radius' is the standard term for the scope of potential damage.