312-50V10 · Question #307
Which of the following tools will scan a network to perform vulnerability checks and compliance auditing?
The correct answer is C. Nessus. Nessus is a dedicated vulnerability scanner and compliance auditing tool, making it the correct choice for those specific functions.
Question
Which of the following tools will scan a network to perform vulnerability checks and compliance auditing?
Options
- ANMAP
- BMetasploit
- CNessus
- DBeEF
How the community answered
(39 responses)- A3% (1)
- B5% (2)
- C92% (36)
Why each option
Nessus is a dedicated vulnerability scanner and compliance auditing tool, making it the correct choice for those specific functions.
NMAP is a network discovery and port scanning tool, not a vulnerability scanner or compliance auditing platform.
Metasploit is a penetration testing and exploitation framework used to launch attacks against known vulnerabilities, not to audit compliance.
Nessus, developed by Tenable, is purpose-built to scan networks for known vulnerabilities and perform compliance auditing against standards such as PCI-DSS and CIS benchmarks. It uses a plugin-based architecture to check hosts for misconfigurations, missing patches, and security weaknesses. This distinguishes it from tools focused solely on network discovery or active exploitation.
BeEF (Browser Exploitation Framework) is designed to exploit web browser vulnerabilities, not to perform network vulnerability or compliance scans.
Concept tested: Vulnerability scanning and compliance auditing tools
Source: https://docs.tenable.com/nessus/Content/GetStarted.htm
Topics
Community Discussion
No community discussion yet for this question.