nerdexam
EC-Council

312-50V10 · Question #889

John, a disgruntled ex-employee of an organization, contacted a professional hacker to exploit the organization. In the attack process, the professional hacker Installed a scanner on a machine belongi

The correct answer is B. Agent-based scanner. An agent-based scanner is installed directly on a host machine to scan the local network from within, matching the scenario where the hacker installed a scanner on a victim's endpoint.

Vulnerability Analysis

Question

John, a disgruntled ex-employee of an organization, contacted a professional hacker to exploit the organization. In the attack process, the professional hacker Installed a scanner on a machine belonging to one of the vktims and scanned several machines on the same network to Identify vulnerabilities to perform further exploitation. What is the type of vulnerability assessment tool employed by John in the above scenario?

Options

  • AProxy scanner
  • BAgent-based scanner
  • CNetwork-based scanner
  • DCluster scanner

How the community answered

(20 responses)
  • A
    5% (1)
  • B
    90% (18)
  • D
    5% (1)

Why each option

An agent-based scanner is installed directly on a host machine to scan the local network from within, matching the scenario where the hacker installed a scanner on a victim's endpoint.

AProxy scanner

A proxy scanner routes scanning traffic through an intermediary proxy server to obscure the source, and is not installed as resident software on a victim's endpoint machine.

BAgent-based scannerCorrect

An agent-based scanner is deployed by installing software directly on a host system, allowing it to enumerate and assess other machines on the same internal network from a trusted insider position. The scenario explicitly states the hacker installed a scanner on a victim's machine before scanning other systems on the same network, which is the defining characteristic of agent-based scanning - it resides on the compromised host rather than operating remotely.

CNetwork-based scanner

A network-based scanner operates remotely over the network from a central console without requiring any software installation on victim or target machines.

DCluster scanner

Cluster scanner is not a recognized standard vulnerability assessment tool category in professional security frameworks or CEH curriculum.

Concept tested: Agent-based vs. network-based vulnerability scanner deployment

Source: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-115.pdf

Topics

#agent-based scanner#vulnerability assessment#scanner types#vulnerability management

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice