Welcome to TestSimulate

Pass Your Next Certification Exam Fast!

Everything you need to prepare, learn & pass your certification exam easily.

365 days free updates. First attempt guaranteed success.

  • Home
  • Blogs
  • Get Latest Oct-2021 Conduct effective penetration tests using TestSimulate CTFL-2018 exam [Q17-Q40]

Get Latest Oct-2021 Conduct effective penetration tests using TestSimulate CTFL-2018 exam [Q17-Q40]

Share

Get Latest [Oct-2021] Conduct effective penetration tests using  TestSimulate CTFL-2018

Penetration testers simulate CTFL-2018 exam PDF

NEW QUESTION 17
During which stage of the fundamental test process is the testability of requirements evaluated?

  • A. Test Design.
  • B. Test Analysis.
  • C. Test Execution.
  • D. Test Planning.

Answer: B

 

NEW QUESTION 18
Which of the following is an approach that can be used for exploratory testing?

  • A. A tester analyses, designs and implements tests based on external rules and standards.
  • B. A tester methodically executes tests from a list of possible failures, based on experience, defect and failure data.
  • C. Time-boxed test sessions are created, during which a tester uses a test charter containing test objectives to guide the testing.
  • D. Tests are designed based on the guidance of stakeholders and experts outside the test team.

Answer: D

 

NEW QUESTION 19
When can functional and structural testing BOTH be applied?

  • A. All 'Development' test levels, i.e. those before Acceptance testing.
  • B. All test levels.
  • C. Component and Component integration test levels only.
  • D. System and Component test levels only.

Answer: B

 

NEW QUESTION 20
Which of the following would NOT typically be covered in a test summary report?

  • A. Any features of the system that were not tested along with reasons.
  • B. Whether there is any economic benefit in continuing testing beyond the planned date.
  • C. The risks associated with unresolved defects found during testing.
  • D. An analysis of lessons learned to determine changes for future projects.

Answer: B

 

NEW QUESTION 21
During the development of a software change for a system, the developer makes a mistake in his work, which leads to a fault in the code. Unfortunately, the fault is not found by software testing and is released into live.
What is the DEFINITE consequence of this mistake?

  • A. If the defect is executed, the system may fail.
  • B. Loss of money, time, or business reputation.
  • C. The system will fail, causing a defect.
  • D. Contractual requirements have not been met by testing.

Answer: A

 

NEW QUESTION 22
Testing and Debugging are key activities in the software development lifecycle.
Which of the following are DEBUGGING activities?
a) Designing tests to find failures.
b) Locating the cause of failures.
c) Analysing and fixing the defects.
d) Executing tests to show failures.

  • A. a and d.
  • B. c and d.
  • C. b and c.
  • D. a and b.

Answer: D

 

NEW QUESTION 23
Which of the following are product risks?
a) Failure prone software delivered.
b) Software does not perform its intended functions.
c) Insufficient staff available for testing.
d) Test environment not ready on time.
e) Poor data integrity and quality.

  • A. b, c and d.
  • B. b, d and e.
  • C. a, b and e.
  • D. b, c and e.

Answer: C

 

NEW QUESTION 24
Given the following state transition diagram where SS is the start state:

Which of the following answers describes a test case that only uses valid transitions to exercise all states, using the minimum number of transitions?

  • A. SS-S1-S3-S2.
  • B. SS-S3-S2-S1.
  • C. SS-S3-SS-S1-S3-S2.
  • D. SS-S1-S2-S3.

Answer: A

 

NEW QUESTION 25
When comparing Static and Dynamic test techniques, which of the following statements is TRUE?

  • A. Static Testing finds failures, whilst Dynamic Testing only finds the cause of failures.
  • B. Only Static Testing has the objective of identifying defects.
  • C. Static Testing techniques, such as reviews, can be undertaken before Dynamic Testing, making defects cheaper to remove.
  • D. Static Testing is based on the execution of code, whist Dynamic Testing relies on examination and analysis.

Answer: C

 

NEW QUESTION 26
Tests have been specified for the latest software release and users have prioritised these.
However, there are some dependencies between tests as shown in the table below (e.g. Test ID. '123' cannot be run until Test ID. '456' has been successfully completed).

Which test execution schedule best meets the prioritisation and dependency conditions?

  • A. 6, 1, 2, 9, 4, 3, 5, 7, 8, 10.
  • B. 3, 5, 7, 10, 2, 4, 6, 8, 9, 1.
  • C. 1, 4, 3, 5, 2, 7, 9, 10, 6, 8.
  • D. 5, 7, 4, 3, 9, 10, 1, 6, 8, 2.

Answer: C

 

NEW QUESTION 27
Given the following decision tables, what is the expected result for the test case listed below?

Test Case: Purchase a Toaster weighing 9kg for E10.

  • A. No need to pay in cash, free delivery.
  • B. Must pay in cash, no free delivery.
  • C. Must pay in cash, free delivery.
  • D. No need to pay in cash, no free delivery.

Answer: D

 

NEW QUESTION 28
Which of the following BEST describes checklist-based testing?

  • A. An experience-based test technique whereby the experienced tester uses a high-level list of items to be noted, checked or remembered, or a set of rules or criteria against which a product has to be verified.
  • B. A test design technique which ensures that test cases are checked for consistency and completeness against an organisation's list of formatting rules and best practices.
  • C. A procedure to derive and/or select test cases based on an analysis of the specification, either functional or non-functional, of a component or system without reference to its internal structure.
  • D. An approach to testing whereby the testers dynamically design and execute tests based on their knowledge, exploration of the test item and the results of previous tests.

Answer: A

 

NEW QUESTION 29
Which one of the following statements about techniques for estimating test effort is correct?

  • A. The metrics-based technique uses metrics supplied by the current test team based on their subjective feel for effort required.
  • B. The expert-based approach is based on the experience of the owners of the testing tasks or by subject matter experts.
  • C. The metrics-based technique finds the most similar former project and uses its original estimate for the current project.
  • D. In an expert-based approach, the test lead with the most years in the role is chosen to produce the estimate.

Answer: B

 

NEW QUESTION 30
Tests have been specified for the latest software release and users have prioritised these.
However, there are some dependencies between tests as shown in the table below (e.g. Test ID. '123' cannot be run until Test ID. '456' has been successfully completed).

Which test execution schedule best meets the prioritisation and dependency conditions?

  • A. 6, 1, 2, 9, 4, 3, 5, 7, 8, 10.
  • B. 3, 5, 7, 10, 2, 4, 6, 8, 9, 1.
  • C. 1, 4, 3, 5, 2, 7, 9, 10, 6, 8.
  • D. 5, 7, 4, 3, 9, 10, 1, 6, 8, 2.

Answer: C

 

NEW QUESTION 31
After a record of poor quality software releases (incorrect menu selection options, new features that do not work, users allowed to change security levels without administrator rights), you have been asked to review the test capability in your company.
You have limited time to do the review before the next project, which type of testing would be MOST appropriate to review first?

  • A. Structural testing.
  • B. Functional testing.
  • C. Non-functional testing.
  • D. Performance testing.

Answer: A

 

NEW QUESTION 32
Which ONE of the following is the BEST way to take advantage of the different mindsets of testers and developers?

  • A. Bring the two mindsets together.
  • B. Have all developers undergo ISTQB training.
  • C. Insist on independent testing at all stages in the lifecycle.
  • D. Keep developers and testers in separate teams.

Answer: A

 

NEW QUESTION 33
You are performing a review of your colleague's test cases based on the following test basis document:

The Test Cases are as follows:
TC1. Success - valid 'User Name' and 'Password'; Customer Menu displayed TC2. Failure - 'User Name' field has blank entry; Error Number 12 displayed TC3. Failure - 'User Id' entered does not exist on database (i.e. unregistered user); Error Number 23 displayed TC4. Failure - 'Password' entered does not match user's password on database; Error Number 24 displayed You are guided by the following checklist in your review:
C1. There must be one test case to cover success
C2. There must be one test case for each error path (e.g. validation failure) C3. Each test case must use terminology consistent with the test basis document (field names, error numbering, etc.) Record a separate defect for each missing test case (checklist items C1 and C2) and for each test case that does not meet checklist item C3.
How many defects should you record?

  • A. 1.
  • B. 2.
  • C. 3.
  • D. 4.

Answer: C

 

NEW QUESTION 34
You have been asked to improve the way test automation tools are being used in your company. Which one of the following is the BEST approach?

  • A. Using a keyword-driven testing approach to separate the actions and data from the tool's script.
  • B. Selecting and automating scripts that test new functionality to find the most defects.
  • C. Keeping expected results separate from the automation tool to allow the testers to check the results.
  • D. Ensuring that all data, inputs and actions are stored in the tool's script for ease of maintenance.

Answer: B

Explanation:
Explanation/Reference:

 

NEW QUESTION 35
You have been asked to improve the way test automation tools are being used in your company. Which one of the following is the BEST approach?

  • A. Using a keyword-driven testing approach to separate the actions and data from the tool's script.
  • B. Selecting and automating scripts that test new functionality to find the most defects.
  • C. Keeping expected results separate from the automation tool to allow the testers to check the results.
  • D. Ensuring that all data, inputs and actions are stored in the tool's script for ease of maintenance.

Answer: B

Explanation:
Explanation/Reference:
Explanation/Reference:

 

NEW QUESTION 36
......

Tested Material Used To CTFL-2018 Test Engine: https://www.testsimulate.com/CTFL-2018-study-materials.html

 

Related Blogs

more
Go To CTFL-2018 Questions

Copyright © 2026 TESTSIMULATE.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.