[CT417]: Reformat exam details
This commit is contained in:
Binary file not shown.
@ -1366,27 +1366,43 @@ Code implementation without a solid design is dangerous \& costly.
|
|||||||
Widely accepted solutions to these recurring architectural design problems are referred to as \textbf{architectural patterns}.
|
Widely accepted solutions to these recurring architectural design problems are referred to as \textbf{architectural patterns}.
|
||||||
|
|
||||||
\section{Exam Spoilers}
|
\section{Exam Spoilers}
|
||||||
\begin{itemize}
|
Answer 3/4 questions.
|
||||||
\item Answer 3/4 questions.
|
Each question is different devsecops phases for the same app for a company.
|
||||||
\item Question 1 is easy, can do without studying just need logic.
|
|
||||||
\item YAML GH Action config provided: explain what it's doing
|
\begin{enumerate}
|
||||||
\item Basic Git commands; check status, fetch stuff, rebase if necessary.
|
\item Question 1:
|
||||||
\item Propose some specific step in CI/CD in order to develop app.
|
\begin{itemize}
|
||||||
\item Each question is different devsecops phases for the same app for a company.
|
\item Question 1 is easy, can do without studying just need logic.
|
||||||
\item Q2: Static vs Dynamic testing.
|
\item YAML GH Action config provided: explain what it's doing
|
||||||
\item How SonarQube improve app development.
|
\item Basic Git commands; check status, fetch stuff, rebase if necessary.
|
||||||
\item Need to know what can cause a failure in dynamic tests, e.g., in OW Zap.
|
\item Propose some specific step in CI/CD in order to develop app.
|
||||||
\item Debate on whether or not it's good to have high or low test coverage.
|
\end{itemize}
|
||||||
\item Q3: What is the meaning of vulnerability and countermeasure.
|
|
||||||
\item What is zero day vulnerability and the five stages.
|
\item Question 2:
|
||||||
Answer in Jack Bower slide.
|
\begin{itemize}
|
||||||
\item Question on buffer overflow.
|
\item Static vs Dynamic testing.
|
||||||
What is it, how to resolve it, explain how it happens, etc.
|
\item How SonarQube improves app development.
|
||||||
If you draw a picture of the stack he won't read the text, instant 5 marks.
|
\item Need to know what can cause a failure in dynamic tests, e.g., in OWASP ZAP.
|
||||||
\item Last question: API first + design patterns, conceptual.
|
\item Debate on whether it's good to have high or low test coverage.
|
||||||
Why is design patterns important, benefits.
|
\end{itemize}
|
||||||
Benefits are the same regardless of pattern.
|
|
||||||
Refactor code based on a pattern; will only be within the 6 we discussed and not singleton, so one of 5.
|
\item Question 3:
|
||||||
\end{itemize}
|
\begin{itemize}
|
||||||
|
\item What is the meaning of vulnerability and countermeasure.
|
||||||
|
\item What is zero day vulnerability and the five stages.
|
||||||
|
Answer in Jack Bower slide.
|
||||||
|
\item Question on buffer overflow.
|
||||||
|
What is it, how to resolve it, explain how it happens, etc.
|
||||||
|
If you draw a picture of the stack he won't read the text, instant 5 marks.
|
||||||
|
\end{itemize}
|
||||||
|
|
||||||
|
\item Question 4:
|
||||||
|
\begin{itemize}
|
||||||
|
\item API first + design patterns, conceptual.
|
||||||
|
\item Why is design patterns important, benefits.
|
||||||
|
Benefits are the same regardless of pattern.
|
||||||
|
\item Refactor code based on a pattern; will only be within the 6 we discussed and not singleton, so one of 5.
|
||||||
|
\end{itemize}
|
||||||
|
\end{enumerate}
|
||||||
|
|
||||||
\end{document}
|
\end{document}
|
||||||
|
|||||||
Reference in New Issue
Block a user