312-50V10 · Question #889
John, a disgruntled ex-employee of an organization, contacted a professional hacker to exploit the organization. In the attack process, the professional hacker Installed a scanner on a machine belongi
The correct answer is B. Agent-based scanner. An agent-based scanner is installed directly on a host machine to scan the local network from within, matching the scenario where the hacker installed a scanner on a victim's endpoint.
Question
John, a disgruntled ex-employee of an organization, contacted a professional hacker to exploit the organization. In the attack process, the professional hacker Installed a scanner on a machine belonging to one of the vktims and scanned several machines on the same network to Identify vulnerabilities to perform further exploitation. What is the type of vulnerability assessment tool employed by John in the above scenario?
Options
- AProxy scanner
- BAgent-based scanner
- CNetwork-based scanner
- DCluster scanner
How the community answered
(20 responses)- A5% (1)
- B90% (18)
- D5% (1)
Why each option
An agent-based scanner is installed directly on a host machine to scan the local network from within, matching the scenario where the hacker installed a scanner on a victim's endpoint.
A proxy scanner routes scanning traffic through an intermediary proxy server to obscure the source, and is not installed as resident software on a victim's endpoint machine.
An agent-based scanner is deployed by installing software directly on a host system, allowing it to enumerate and assess other machines on the same internal network from a trusted insider position. The scenario explicitly states the hacker installed a scanner on a victim's machine before scanning other systems on the same network, which is the defining characteristic of agent-based scanning - it resides on the compromised host rather than operating remotely.
A network-based scanner operates remotely over the network from a central console without requiring any software installation on victim or target machines.
Cluster scanner is not a recognized standard vulnerability assessment tool category in professional security frameworks or CEH curriculum.
Concept tested: Agent-based vs. network-based vulnerability scanner deployment
Source: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-115.pdf
Topics
Community Discussion
No community discussion yet for this question.