312-50V11 · Question #114
You are doing an internal security audit and intend to find out what ports are open on all the servers. What is the best way to find out?
The correct answer is A. Scan servers with Nmap. Nmap is the industry-standard network scanner used to discover open ports across multiple hosts efficiently. It is purpose-built for this task and far superior to manual or indirect methods.
Question
You are doing an internal security audit and intend to find out what ports are open on all the servers. What is the best way to find out?
Options
- AScan servers with Nmap
- BScan servers with MBSA
- CTelnet to every port on each server
- DPhysically go to each server
How the community answered
(24 responses)- A92% (22)
- B4% (1)
- C4% (1)
Why each option
Nmap is the industry-standard network scanner used to discover open ports across multiple hosts efficiently. It is purpose-built for this task and far superior to manual or indirect methods.
Nmap is a dedicated network port scanner that can sweep entire IP ranges, identify open TCP/UDP ports, detect service versions, and produce structured reports - all in a single automated run. It supports host discovery, stealth scanning modes, and scripting, making it the standard tool for internal security audits. No other option in this list combines speed, accuracy, and coverage at scale.
MBSA (Microsoft Baseline Security Analyzer) checks Windows systems for missing patches and security misconfigurations, not for enumerating open ports.
Telnetting to every port on each server is manually intensive, extremely slow, unreliable for UDP, and impractical across an entire server estate.
Physically visiting each server provides no mechanism to determine which network ports are open without additional tools.
Concept tested: Network port scanning using Nmap
Source: https://nmap.org/book/man.html
Topics
Community Discussion
No community discussion yet for this question.