312-50V13 Question #247: Real Exam Question with Answer & Explanation

Question

In order to tailor your tests during a web-application scan, you decide to determine which web- server version is hosting the application. On using the sV flag with Nmap. you obtain the following response: 80/tcp open http-proxy Apache Server 7.1.6 what Information-gathering technique does this best describe?

Options

• AWhOiS lookup
• BBanner grabbing
• CDictionary attack
• DBrute forcing

Explanation

Banner Grabbing Explained

Using Nmap's -sV (service version) flag to query a web server and receive a response that reveals the software and version information (e.g., "Apache Server 7.1.6") is the classic definition of banner grabbing - a passive reconnaissance technique where an attacker reads the service banner that a server voluntarily broadcasts about itself.

Why the distractors are wrong:

• A (WHOIS lookup) involves querying domain registration databases for ownership/contact information, not server software details
• C (Dictionary attack) is an active credential attack using a predefined wordlist to guess passwords - no authentication attempt is being made here
• D (Brute forcing) involves systematically trying all possible character combinations to crack passwords or encryption - completely unrelated to version detection

Memory Tip: Think of a banner like a storefront sign - the server is essentially advertising what it's running. Just as a shop displays its name and hours on a banner, a web server "hangs out" its software name and version for anyone who asks. If you're reading the sign rather than breaking down the door (brute force) or looking up the owner (WHOIS), it's banner grabbing!

No community discussion yet for this question.