312-50V11 · Question #1028
Lewis, a professional hacker, targeted the loT cameras and devices used by a target venture- capital firm. He used an information-gathering tool to collect information about the loT devices connected
The correct answer is A. Censys. Censys is an Internet-wide scanning and reconnaissance platform used to discover IoT devices, open ports, services, and generate statistical usage reports across the public Internet.
Question
Options
- ACensys
- BWapiti
- CNeuVector
- DLacework
How the community answered
(40 responses)- A93% (37)
- B5% (2)
- D3% (1)
Why each option
Censys is an Internet-wide scanning and reconnaissance platform used to discover IoT devices, open ports, services, and generate statistical usage reports across the public Internet.
Censys continuously scans the entire IPv4 address space to index devices, open ports, running services, and TLS certificates, providing statistical trend reports and an attack surface view - exactly matching the scenario. It allows attackers to discover and profile IoT devices and servers reachable on the Internet for exploitation purposes.
Wapiti is a web application vulnerability scanner that audits web app security by injecting payloads, not a broad Internet-wide device discovery and statistical reporting tool.
NeuVector is a container and Kubernetes security platform focused on runtime protection and network segmentation, not Internet-wide IoT reconnaissance.
Lacework is a cloud workload and configuration security platform providing compliance and anomaly detection, not a tool for scanning the public Internet for IoT devices and open ports.
Concept tested: IoT reconnaissance using Internet-wide scanning tools
Source: https://censys.io/product/
Topics
Community Discussion
No community discussion yet for this question.