312-50V13 · Question #247
In order to tailor your tests during a web-application scan, you decide to determine which web- server version is hosting the application. On using the sV flag with Nmap. you obtain the following resp
The correct answer is B. Banner grabbing. Banner Grabbing Explained Using Nmap's -sV (service version) flag to query a web server and receive a response that reveals the software and version information (e.g., "Apache Server 7.1.6") is the classic definition of banner grabbing - a passive reconnaissance technique where a
Question
Options
- AWhOiS lookup
- BBanner grabbing
- CDictionary attack
- DBrute forcing
How the community answered
(19 responses)- A5% (1)
- B89% (17)
- C5% (1)
Explanation
Banner Grabbing Explained
Using Nmap's -sV (service version) flag to query a web server and receive a response that reveals the software and version information (e.g., "Apache Server 7.1.6") is the classic definition of banner grabbing - a passive reconnaissance technique where an attacker reads the service banner that a server voluntarily broadcasts about itself.
Why the distractors are wrong:
- A (WHOIS lookup) involves querying domain registration databases for ownership/contact information, not server software details
- C (Dictionary attack) is an active credential attack using a predefined wordlist to guess passwords - no authentication attempt is being made here
- D (Brute forcing) involves systematically trying all possible character combinations to crack passwords or encryption - completely unrelated to version detection
Memory Tip: Think of a banner like a storefront sign - the server is essentially advertising what it's running. Just as a shop displays its name and hours on a banner, a web server "hangs out" its software name and version for anyone who asks. If you're reading the sign rather than breaking down the door (brute force) or looking up the owner (WHOIS), it's banner grabbing!
Topics
Community Discussion
No community discussion yet for this question.