Learn about non-credentialed vulnerability scans, where an analyst scans exposed web servers without a system account, in this CompTIA SY0-701 exam question.
Table of Contents
Question
An analyst is performing a vulnerability scan against the web servers exposed to the internet without a system account. Which of the following is most likely being performed?
A. Non-credentialed scan
B. Packet capture
C. Privilege escalation
D. System enumeration
E. Passive scan
Answer
A. Non-credentialed scan
Explanation
A non-credentialed scan is the most likely action being performed by the analyst in this scenario. A non-credentialed scan, also known as an unauthenticated scan, is a type of vulnerability scan where the scanning tool does not have valid login credentials for the target systems.
In this case, the analyst is scanning web servers exposed to the internet without a system account, meaning they do not have privileged access to those servers. The scan will test the servers for potential vulnerabilities that can be detected externally without logging in, such as open ports, unpatched software, misconfigurations, etc.
The other options can be ruled out:
B. Packet capture involves recording network traffic, not scanning for vulnerabilities.
C. Privilege escalation is the act of exploiting a bug or vulnerability to gain elevated access, which requires a foothold on the system first.
D. System enumeration involves actively connecting to a system to retrieve detailed information, which usually requires credentials.
E. A passive scan simply listens to network traffic without actively interacting with systems, so it would not be used to scan web servers.
Therefore, a non-credentialed vulnerability scan best describes the actions of the analyst in this question. The scan will help identify potential security weaknesses in the exposed web servers that could be exploited by attackers.
CompTIA SY0-701 certification exam assessment practice question and answer (Q&A) dump including multiple choice questions (MCQ) and objective type questions, with detail explanation and reference available free, helpful to pass the CompTIA SY0-701 exam and earn CompTIA SY0-701 certification.