Penetration Tester Interview Questions


Penetration Tester interview questions shared by candidates

Top Interview Questions

Sort: Relevance|Popular|Date
Early Warning Services
Penetration Tester was asked...21 March 2016

How do you start metasploit?

2 Answers

Type msfconsole in terminal. To launch it with a resource script, mfsconsole -r nameofscript.rc Less


Hewlett Packard Enterprise | HPE

Why HP?

2 Answers

Because HP stands for Happy Place.

This looks so good:


What would you like to do in five years from now?

2 Answers

After five years i am ceo of your company .

This was a tricky question. The manager wanted to see if my answer is in line with the career path offered by the advanced security group at E n Y Less


Technical question: networking security, application security, general penetration testing. Behavioural question: How to work in a group?, How it lead a team?, etc

2 Answers

hey hello "> hey"> hey '> /> hey


Early Warning Services

Is DNS TCP / UDP protocol?

1 Answers

It's a trick questions. It is both


Please explain your career and what you hope to gain at Smartsheet

1 Answers

Explain my career: - Identify vulnerability as much as possible (in scope) - Recommend to other team how to fix the issue What I hope to gain at Smartsheet?: Ans: Well, all of my penetration tester experience I work at vendor company. I never work at customer company before. I want to challenge myself that all of experience that work with multiple type of customer organization could improve the security at Smartsheet. Less


What is the main difference between processes and threads?

1 Answers

Threads share the same memory allocated

NAB - National Australia Bank

name the 4 most common ways to prevent a XSS attack

1 Answers

HTTP headers, validating input fields, WAF


What vulnerabilities could you find in a website?

1 Answers

Front end vulnerabilities that could be bypassed easily in some cases by eliminating javascript code or back end vulnerabilities such as unsanitized input. Less

Axxum Technologies

Name some of the top 10 OWASP Web Application Vulnerabilities and describe them in layman's terms.

1 Answers

I named the top one SQL Injection, the third, XXS and one of the lower ones CSRF. I could have done a better job describing them - I was told in a phone call afterwards. Less

Viewing 1 - 10 of 211 interview questions

See Interview Questions for Similar Jobs

Glassdoor has 211 interview questions and reports from Penetration tester interviews. Prepare for your interview. Get hired. Love your job.