nerdexam
EC-Council

312-50V10 · Question #461

An attacker tries to do banner grabbing on a remote web server and executes the following command. $ nmap -sV host.domain.com -p 80 He gets the following output. scan report for host.domain.com (108.6

The correct answer is B. The hacker successfully completed the banner grabbing.. Banner grabbing is the technique of retrieving identifying information from a service's response header or banner. The nmap -sV flag performs version/service detection, and the output confirms the host is up, port 80 is open, and the service is 'Apache httpd' - this IS banner gra

Scanning Networks

Question

An attacker tries to do banner grabbing on a remote web server and executes the following command. $ nmap -sV host.domain.com -p 80 He gets the following output. scan report for host.domain.com (108.61.158.211) Host is up (0.032s latency). PORT STATE SERVICE VERSION 80/tcp open http Apache httpd done: 1 IP address (1 host up) scanned in 6.42 seconds What did the hacker accomplish?

Options

  • Anmap can't retrieve the version number of any running remote service.
  • BThe hacker successfully completed the banner grabbing.
  • CThe hacker should've used nmap -O host.domain.com.
  • DThe hacker failed to do banner grabbing as he didn't get the version of the Apache web server.

How the community answered

(22 responses)
  • A
    14% (3)
  • B
    82% (18)
  • D
    5% (1)

Explanation

Banner grabbing is the technique of retrieving identifying information from a service's response header or banner. The nmap -sV flag performs version/service detection, and the output confirms the host is up, port 80 is open, and the service is 'Apache httpd' - this IS banner grabbing succeeding. The server may have suppressed its exact version string (a common hardening technique), but the attacker still obtained meaningful banner data (service name). Choice D is a common trap: not getting a full version number does not mean banner grabbing failed - it means the server is partially hardened. Choice A is false; nmap -sV regularly retrieves service info. Choice C (-O) is for OS fingerprinting, not banner grabbing.

Topics

#banner grabbing#nmap -sV#service version detection#web server fingerprinting

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice