Penetration Testing Interview Questions

34 penetration testing interview questions shared by candidates

Easy to average cyber security questions. Some questions are scenario-based, Questions like the difference between session fixation and session hijacking. 2) what are the tools used 3) Is HTTP a stateless or stateful protocol and why? 3) Different options on Burpsuite 4) What steps do you follow for security testing? 5) can you perform DDOS attack with Burpsuite and how? 6)Explain roles and responsibilities 7)Types of penetration testing 9) Why do we use Nmap? 10) XSS and Types 11) if a website allows forward and back ward navigation, what type of vulnerability it has?

Penetration Testing Engineer/VAPT Team

Interviewed at Tata Consultancy Services

3.5★

Feb 22, 2025

Name some ways to identify a Linux process that is consuming too much memory or cpu?

Penetration Test Practice Lead

Interviewed at A-LIGN

4.3★

Feb 27, 2019

Name some ways to identify a Linux process that is consuming too much memory or cpu?

1 How can a malware stay stealthy in a system? 2 If you have compromised a system, how can you know the network's internal services?(not network level) 3 How to rob a bank?

Security Intern(Penetration Test)

Interviewed at Salesforce

4.1★

Mar 22, 2015

1 How can a malware stay stealthy in a system? 2 If you have compromised a system, how can you know the network's internal services?(not network level) 3 How to rob a bank?

As I said, most of em where from my resume (what ever tools I know/used, how they work etc.). And some general questions (whats and hows about cyber security methods, techniques, attacks types etc.)

Penetration Testing Intern

Interviewed at Early Warning Services

2.5★

Jan 26, 2016

As I said, most of em where from my resume (what ever tools I know/used, how they work etc.). And some general questions (whats and hows about cyber security methods, techniques, attacks types etc.)

Tell me about that how will you perform IDOR testing for the web application.

Penetration Testing Consultant

Interviewed at Secureworks

3.6★

Sep 19, 2019

Tell me about that how will you perform IDOR testing for the web application.

I forget the exact questions, but if you have leadership and problem-solving skills then you should be fine.

Penetration Test Developer

Interviewed at Detectify

4.5★

Jun 26, 2019

I forget the exact questions, but if you have leadership and problem-solving skills then you should be fine.

Can u explain me about privilege escalation?

Penetration Testing Consultant

Interviewed at Security Compass

4.1★

Aug 1, 2019

Can u explain me about privilege escalation?

Symmetric vs Asymmetric cryptography? Encryption vs Signing? Is it possible for encryption to take place without signing?

Penetration Testing

Interviewed at Amazon

3.5★

Nov 10, 2020

Symmetric vs Asymmetric cryptography? Encryption vs Signing? Is it possible for encryption to take place without signing?

Web authentication,SSRF,CSRF,Scripting,Java code review,XSS,TLS handshake,encryption.Needed to have a very deep understanding of those.

Security Engineer - Penetration Testing

Interviewed at Amazon

3.5★

Oct 7, 2022

Web authentication,SSRF,CSRF,Scripting,Java code review,XSS,TLS handshake,encryption.Needed to have a very deep understanding of those.

Tell me more about yourself.

Penetration Testing Consultant

Interviewed at Secureworks

3.6★

Sep 19, 2019

Tell me more about yourself.

Viewing 11 - 20 interview questions

See Interview Questions for Similar Jobs

Vulnerability Researcher Malware Analyst Security Engineer Ethical Hacker Penetration Tester

Glassdoor has 34 interview questions and reports from Penetration testing interviews. Prepare for your interview. Get hired. Love your job.